Lucene search
K

7 matches found

Nuclei
Nuclei
added 2026/06/28 3:8 p.m.48 views

OctoberCMS - Account Takeover

octobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system package an attacker can request an account password reset and then gain access to the account using a specially crafted request. The issue has been patched in Build 472 and v1.1.5. id:...

9.1CVSS7.5AI score0.90418EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 9:18 p.m.15 views

CVE-2021-32648

octobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system package an attacker can request an account password reset and then gain access to the account using a specially crafted request. The issue has been patched in Build 472 and v1.1.5...

9.1CVSS7.2AI score0.90418EPSS
Exploits1References1
Check Point Advisories
Check Point Advisories
added 2022/02/02 12:0 a.m.10 views

October CMS Authentication Bypass (CVE-2021-32648)

An authentication bypass vulnerability exists in October CMS. Successful exploitation of this vulnerability would allow remote attackers to obtain sensitive information and gain unauthorized access into the affected system...

6.4CVSS6AI score0.90418EPSS
Exploits1
Circl
Circl
added 2021/08/26 10:27 p.m.7 views

CVE-2021-32648

creationtimestamp| type| source ---|---|--- 2021-08-26 22:27:39+00:00| seen| https://t.me/cibsecurity/27916 2022-01-14 12:46:35+00:00| exploited| https://t.me/RussianOSINT/1142 2022-01-16 16:00:02+00:00| seen| https://t.me/secsocteam/227 2022-01-16 18:19:49+00:00| exploited|...

9.1CVSS7.5AI score0.90418EPSS
Exploits1References15
OSV
OSV
added 2021/08/26 7:15 p.m.27 views

CVE-2021-32648

octobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system package an attacker can request an account password reset and then gain access to the account using a specially crafted request. The issue has been patched in Build 472 and v1.1.5...

9.1CVSS9.4AI score0.90418EPSS
Exploits1References4
CVE
CVE
added 2021/08/26 7:0 p.m.1117 views

CVE-2021-32648

CVE-2021-32648 affects October CMS (Laravel-based) through the october/system package. An authentication bypass allows an attacker to request a password reset and then take over an account. Patches are available: Build 472 and v1.1.5. Public advisories and CVE trackers consistently describe this ...

9.1CVSS8.9AI score0.90418EPSS
In wildExploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2021/08/26 7:0 p.m.9 views

CVE-2021-32648 Account Takeover in Octobercms

octobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system package an attacker can request an account password reset and then gain access to the account using a specially crafted request. The issue has been patched in Build 472 and v1.1.5...

8.2CVSS9.4AI score0.90418EPSS
Exploits1References3
Rows per page
Query Builder