5 matches found
CVE-2020-25986
A Cross Site Request Forgery CSRF vulnerability in MonoCMS Blog 1.0 allows attackers to change the password of a user...
CVE-2020-25986
A Cross Site Request Forgery CSRF vulnerability in MonoCMS Blog 1.0 allows attackers to change the password of a user...
CVE-2020-25986
CVE-2020-25986 (MonoCMS Blog 1.0) is a CSRF vulnerability that, per the description, allows an attacker to change a user’s password. The core affected component is MonoCMS Blog 1.0; the root cause is CSRF that enables unwanted state-changing requests without user interaction, leading to credentia...
MonoCMS Blog 1.0 File Deletion / CSRF / Hardcoded Credentials
Exploit Title: MonoCMS Blog 1.0 - Arbitrary File Deletion Authenticated Date: 2020-09-20 Exploit Author: Shahrukh Iqbal Mirza @shahrukhiqbal24 Vendor Homepage: https://monocms.com/download Software Link: https://monocms.com/download Version: 1.0 Tested On: Windows 10 XAMPP CVE: N/A Proof of...
MonoCMS Blog 1.0 - Arbitrary File Deletion (Authenticated)
Exploit Title: MonoCMS Blog 1.0 - Arbitrary File Deletion Authenticated Date: 2020-09-20 Exploit Author: Shahrukh Iqbal Mirza @shahrukhiqbal24 Vendor Homepage: https://monocms.com/download Software Link: https://monocms.com/download Version: 1.0 Tested On: Windows 10 XAMPP CVE: N/A Proof of...