Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

292 matches found

Exploit DB
Exploit DBadded 2020/12/14 12:0 a.m.386 views

Seacms 11.1 - 'checkuser' Stored XSS

Exploit Title: Seacms 11.1 - 'checkuser' Stored XSS Date: 20201212 Exploit Author: j5s Vendor Homepage: https://www.seacms.net/ Software Link: https://www.seacms.net/ Version: 11.1 POST /SEACMS111/5f9js3/adminsafe.php?action=setting HTTP/1.1 Host: 192.168.137.139 User-Agent: Mozilla/5.0 Windows N...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2020/12/13 12:0 a.m.234 views

Seacms 11.1 Cross Site Scripting

Exploit Title: Seacms 11.1 - 'checkuser' Stored XSS Date: 20201212 Exploit Author: j5s Vendor Homepage: https://www.seacms.net/ Software Link: https://www.seacms.net/ Version: 11.1 POST /SEACMS111/5f9js3/adminsafe.php?action=setting HTTP/1.1 Host: 192.168.137.139 User-Agent: Mozilla/5.0 Windows N...

7.4AI score
Exploits0
CNVD
CNVDadded 2020/03/20 12:0 a.m.3 views

Unspecified vulnerability in MediaWiki CheckUser extension

MediaWiki is a free and freely available web-based Wiki engine from the MediaWiki Wikimedia Foundation in the United States. The product can be used to deploy in-house knowledge management and content management systems. checkUser extension is one of the user information checking extensions. A...

5.3CVSS6.4AI score0.00179EPSS
Exploits0References1
NVD
NVDadded 2020/03/19 11:15 p.m.14 views

CVE-2019-16529

An issue was discovered in the CheckUser extension through 1.35.0 for MediaWiki. Oversighted edit summaries are still visible in CheckUser results in violation of MediaWiki's permissions model...

5.3CVSS5.4AI score0.00179EPSS
Exploits0References2
OSV
OSVadded 2020/03/19 11:15 p.m.4 views

CVE-2019-16529

An issue was discovered in the CheckUser extension through 1.35.0 for MediaWiki. Oversighted edit summaries are still visible in CheckUser results in violation of MediaWiki's permissions model...

5.3CVSS6.9AI score
Exploits0References2
Prion
Prionadded 2020/03/19 11:15 p.m.10 views

Design/Logic Flaw

An issue was discovered in the CheckUser extension through 1.35.0 for MediaWiki. Oversighted edit summaries are still visible in CheckUser results in violation of MediaWiki's permissions model...

5CVSS5.4AI score0.00179EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2020/03/19 10:51 p.m.14 views

CVE-2019-16529

An issue was discovered in the CheckUser extension through 1.35.0 for MediaWiki. Oversighted edit summaries are still visible in CheckUser results in violation of MediaWiki's permissions model...

5.4AI score0.00179EPSS
Exploits0References2
CVE
CVEadded 2020/03/19 10:51 p.m.65 views

CVE-2019-16529

The vulnerability CVE-2019-16529 affects the MediaWiki CheckUser extension up to version 1.35.0 . The issue is that oversighted edit summaries are still visible in CheckUser results, which violates MediaWiki’s permissions model. The connected sources confirm the existence of this exposure but do ...

5.3CVSS5.3AI score0.00179EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2019/10/29 7:15 p.m.3 views

CVE-2019-18611

An issue was discovered in the CheckUser extension through 1.34 for MediaWiki. Certain sensitive information within oversighted edit summaries made available via the MediaWiki API was potentially visible to users with various levels of access to this extension. Said users should not have been abl...

6.5CVSS6.5AI score
Exploits0References2
NVD
NVDadded 2019/10/29 7:15 p.m.9 views

CVE-2019-18611

An issue was discovered in the CheckUser extension through 1.34 for MediaWiki. Certain sensitive information within oversighted edit summaries made available via the MediaWiki API was potentially visible to users with various levels of access to this extension. Said users should not have been abl...

6.5CVSS6.5AI score0.00335EPSS
Exploits0References2
Prion
Prionadded 2019/10/29 7:15 p.m.10 views

Design/Logic Flaw

An issue was discovered in the CheckUser extension through 1.34 for MediaWiki. Certain sensitive information within oversighted edit summaries made available via the MediaWiki API was potentially visible to users with various levels of access to this extension. Said users should not have been abl...

4CVSS6.4AI score0.00335EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2019/10/29 3:41 p.m.40 views

CVE-2019-18611

CVE-2019-18611 affects the MediaWiki CheckUser extension (up to v1.34). The issue enables certain sensitive information contained in oversighted edit summaries to be visible via the MediaWiki API to users with varying access levels. Underlying cause and impact are that confidentiality can be part...

6.5CVSS6.4AI score0.00335EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2019/10/29 3:41 p.m.14 views

CVE-2019-18611

An issue was discovered in the CheckUser extension through 1.34 for MediaWiki. Certain sensitive information within oversighted edit summaries made available via the MediaWiki API was potentially visible to users with various levels of access to this extension. Said users should not have been abl...

6.5AI score0.00335EPSS
Exploits0References2
seebug.org
seebug.orgadded 2017/01/18 12:0 a.m.26 views

dedeCMS use links to mention the right vulnerability

In the tpl. php /--------------------------- function savetagfile Save the label pieces to modify --------------------------/ else if$action=='savetagfile' if! pregmatch"^a-z0-9-1,. lib.php$i", $filename ShowMsg'file name is not legal, not allowed!', '-1'; exit; requireonceDEDEINC.'/...

7AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2016/08/05 12:0 a.m.21 views

MediaWiki < 1.19.24 / 1.23.9 / 1.24.2 Multiple Vulnerabilities

Binary data 9471.prm...

7.1CVSS7.3AI score0.02017EPSS
Exploits4References14
CNVD
CNVDadded 2015/04/14 12:0 a.m.2 views

MediaWiki Cross-Site Request Forgery Vulnerability (CNVD-2015-02413)

MediaWiki is a Wiki program. A cross-site request forgery vulnerability exists in the MediaWiki CheckUser extension. A remote attacker can exploit this vulnerability to retrieve sensitive user information...

6.8CVSS6.9AI score0.00295EPSS
Exploits0References1
OSV
OSVadded 2015/04/13 2:59 p.m.4 views

CVE-2015-2940

Cross-site request forgery CSRF vulnerability in the CheckUser extension for MediaWiki allows remote attackers to hijack the authentication of certain users for requests that retrieve sensitive user information via unspecified vectors...

6.5AI score
Exploits0References8
OSV
OSVadded 2015/04/13 2:59 p.m.1 views

DEBIAN-CVE-2015-2940

Cross-site request forgery CSRF vulnerability in the CheckUser extension for MediaWiki allows remote attackers to hijack the authentication of certain users for requests that retrieve sensitive user information via unspecified vectors...

6.8CVSS6.8AI score0.00295EPSS
Exploits0References1
NVD
NVDadded 2015/04/13 2:59 p.m.12 views

CVE-2015-2940

Cross-site request forgery CSRF vulnerability in the CheckUser extension for MediaWiki allows remote attackers to hijack the authentication of certain users for requests that retrieve sensitive user information via unspecified vectors...

6.8CVSS6.6AI score0.00295EPSS
Exploits0References7
Prion
Prionadded 2015/04/13 2:59 p.m.7 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the CheckUser extension for MediaWiki allows remote attackers to hijack the authentication of certain users for requests that retrieve sensitive user information via unspecified vectors...

6.8CVSS7.1AI score0.00295EPSS
Exploits0References7
Rows per page
Query Builder