CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

EUVD•added 2026/03/06 3:31 p.m.•4 views

EUVD-2018-21642

Data Center Audit 2.6.2 contains an SQL injection vulnerability in the username parameter of dcalogin.php that allows unauthenticated attackers to execute arbitrary SQL queries. Attackers can submit crafted SQL payloads through POST requests to extract sensitive database information including...

8.8CVSS6.1AI score0.00123EPSS

Exploits0References3

EUVD•added 2026/03/06 3:31 p.m.•2 views

EUVD-2018-21632

Data Center Audit 2.6.2 contains a cross-site request forgery vulnerability that allows attackers to reset administrator passwords without authentication by submitting crafted POST requests. Attackers can send requests to dcaresetpw.php with parameters updateuser, pass, pass2, and submitreset to...

6.9CVSS5.7AI score0.00031EPSS

Exploits0References3

NVD•added 2026/03/06 1:16 p.m.•2 views

CVE-2018-25189

8.8CVSS0.00123EPSS

Exploits0References2

NVD•added 2026/03/06 1:15 p.m.•3 views

CVE-2018-25177

6.9CVSS0.00031EPSS

Exploits0References2

ATTACKERKB•added 2026/03/06 12:19 p.m.•1 views

CVE-2018-25189

8.8CVSS6.1AI score0.00123EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/03/06 12:19 p.m.•1 views

CVE-2018-25189 Data Center Audit 2.6.2 SQL Injection via username Parameter

8.8CVSS6.1AI score0.00123EPSS

Exploits0References2

CVE•added 2026/03/06 12:19 p.m.•9 views

CVE-2018-25189

Data Center Audit 2.6.2 contains an SQL injection vulnerability in the username parameter of dca_login.php that allows unauthenticated attackers to submit crafted SQL payloads via POST to extract sensitive DB information (usernames, database names, version details). CVSS vectors: CVSS3.1 (AV:N/AC...

8.8CVSS6.1AI score0.00123EPSS

Exploits0References2

Cvelist•added 2026/03/06 12:19 p.m.•25 views

CVE-2018-25189 Data Center Audit 2.6.2 SQL Injection via username Parameter

8.8CVSS0.00123EPSS

Exploits0References2

Cvelist•added 2026/03/06 12:19 p.m.•25 views

CVE-2018-25177 Data Center Audit 2.6.2 Cross-Site Request Forgery via dca_resetpw.php

6.9CVSS0.00031EPSS

Exploits0References2

CVE•added 2026/03/06 12:19 p.m.•7 views

CVE-2018-25177

CVE-2018-25177 : Data Center Audit 2.6.2 has a cross-site request forgery that lets attackers reset the administrator password without authentication by posting to dca_resetpw.php with parameters updateuser, pass, pass2, and submit_reset. This enables administrative access. CVSS metrics are provi...

6.9CVSS5.7AI score0.00031EPSS

Exploits0References2

ATTACKERKB•added 2026/03/06 12:19 p.m.•2 views

CVE-2018-25177

6.9CVSS5.7AI score0.00031EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/03/06 12:19 p.m.•1 views

CVE-2018-25177 Data Center Audit 2.6.2 Cross-Site Request Forgery via dca_resetpw.php

6.9CVSS5.7AI score0.00031EPSS

Exploits0References2

CNNVD•added 2026/03/06 12:0 a.m.•3 views

Data Center Audit 跨站请求伪造漏洞

Data Center Audit is a data auditing software developed by Ben Patridge. Version 2.6.2 of Data Center Audit contains a cross-site request forgeing vulnerability. This vulnerability stems from the dcaResetpw.php file, which allows for cross-site request forgeing, potentially enabling unauthorized...

6.9CVSS5.7AI score0.00031EPSS

Exploits0References2

Positive Technologies•added 2026/03/06 12:0 a.m.•3 views

PT-2026-23689

Data Center Audit 2.6.2 contains a cross-site request forgery vulnerability that allows attackers to reset administrator passwords without authentication by submitting crafted POST requests. Attackers can send requests to dca resetpw.php with parameters updateuser, pass, pass2, and submit reset t...

6.9CVSS5.7AI score0.00031EPSS

Exploits0References3

CNNVD•added 2026/03/06 12:0 a.m.•3 views

Data Center Audit SQL注入漏洞

Data Center Audit is a data auditing software developed by Ben Patridge. Version 2.6.2 of Data Center Audit contains a SQL injection vulnerability. This vulnerability stems from an SQL injection issue with the username parameter in the dcalogin.php file, which may allow unverified attackers to...

8.8CVSS6.1AI score0.00123EPSS

Exploits0References2

Positive Technologies•added 2026/03/06 12:0 a.m.•3 views

PT-2026-23699

Data Center Audit 2.6.2 contains an SQL injection vulnerability in the username parameter of dca login.php that allows unauthenticated attackers to execute arbitrary SQL queries. Attackers can submit crafted SQL payloads through POST requests to extract sensitive database information including...

8.8CVSS6.1AI score0.00123EPSS

Exploits0References3

0day.today•added 2018/11/14 12:0 a.m.•259 views

Data Center Audit 2.6.2 - Cross-Site Request Forgery (Update Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: Data Center Audit 2.6.2 - Cross-Site Request Forgery Update Admin Exploit Author: Ihsan Sencan Vendor Homepage: https://sourceforge.net/projects/datacenteraudit/ Software Link:...

0.4AI score

Exploits0

Packet Storm•added 2018/11/13 12:0 a.m.•134 views

Data Center Audit 2.6.2 Cross Site Request Forgery

Exploit Title: Data Center Audit 2.6.2 - Cross-Site Request Forgery Update Admin Dork: N/A Date: 2018-11-09 Exploit Author: Ihsan Sencan Vendor Homepage: https://sourceforge.net/projects/datacenteraudit/ Software Link: https://netix.dl.sourceforge.net/project/datacenteraudit/datacenterauditv262.z...

0.7AI score

Exploits0

exploitpack•added 2018/11/13 12:0 a.m.•15 views

Data Center Audit 2.6.2 - Cross-Site Request Forgery (Update Admin)

Data Center Audit 2.6.2 - Cross-Site Request Forgery Update Admin Exploit Title: Data Center Audit 2.6.2 - Cross-Site Request Forgery Update Admin Dork: N/A Date: 2018-11-09 Exploit Author: Ihsan Sencan Vendor Homepage: https://sourceforge.net/projects/datacenteraudit/ Software Link:...

0.5AI score

Exploits0

Exploit DB•added 2018/11/13 12:0 a.m.•23 views

Data Center Audit 2.6.2 - Cross-Site Request Forgery (Update Admin)

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by