286 matches found
SAPID CMF Build 87 (last_module) Remote Code Execution Vulnerability
Exploit for unknown platform in category web applications ==================================================================== SAPID CMF Build 87 lastmodule Remote Code Execution Vulnerability ==================================================================== SAPID CMF Build 87 lastmodule Remot...
CVE-2003-0731
CiscoWorks Common Management Foundation CMF 2.1 and earlier allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the "cmd" parameter with a modifyUser value and a modified "priviledges" parameter...
CVE-2003-0732
CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows a guest user to change the guest account to Admin on the Modify or delete users pages, potentially obtaining restricted information and administrative privileges. Affected component: CMF authentication/authorization on user-mana...
CVE-2003-0731
CMF 2.1 and earlier of CiscoWorks Common Management Foundation is affected: a guest user could obtain administrative privileges via a specific POST to com.cisco.nm.cmf.servlet.CsAuthServlet, potentially using the cmd parameter with a modifyUser value and a altered priviledges parameter. This is d...
CVE-2003-0732
CiscoWorks Common Management Foundation CMF 2.1 and earlier allows the guest user to obtain restricted information and possibly gain administrative privileges by changing the "guest" user to the Admin user on the Modify or delete users pages...
CVE-2003-0731
CiscoWorks Common Management Foundation CMF 2.1 and earlier allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the "cmd" parameter with a modifyUser value and a modified "priviledges" parameter...