Lucene search
K

127 matches found

Cvelist
Cvelist
added 2022/05/16 5:15 p.m.17 views

CVE-2021-27444 Weintek EasyWeb cMT Improper Access Control

The Weintek cMT product line is vulnerable to various improper access controls, which may allow an unauthenticated attacker to remotely access and download sensitive information and perform administrative actions on behalf of a legitimate administrator...

9.8CVSS9.5AI score0.01051EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/03/23 12:0 a.m.3 views

Rusavtomatika Weintek EasyWeb cMT 跨站脚本漏洞

Rusavtomatika Weintek EasyWeb cMT is an application platform of the Russian company Rusavtomatika. It is used to configure the parameters of the human-machine interface. A cross-site scripting vulnerability exists in Rusavtomatika Weintek EasyWeb cMT, which allows unauthenticated, remote attacker...

9.4CVSS6AI score0.00817EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/03/23 12:0 a.m.5 views

Rusavtomatika Weintek EasyWeb cMT 安全漏洞

Rusavtomatika Weintek EasyWeb cMT is an application platform of the Russian company Rusavtomatika. It is used to configure the parameters of the human-machine interface. A security vulnerability exists in Rusavtomatika Weintek EasyWeb cMT that allows an unauthenticated attacker to remotely access...

9.8CVSS8.3AI score0.01051EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/03/23 12:0 a.m.5 views

Rusavtomatika Weintek EasyWeb cMT 代码注入漏洞

Rusavtomatika Weintek EasyWeb cMT is an application platform of the Russian company Rusavtomatika. It is used to configure the parameters of the human-machine interface. A code injection vulnerability exists in Rusavtomatika Weintek EasyWeb cMT that allows an unauthenticated, remote attacker to...

10CVSS8.7AI score0.02643EPSS
Exploits0References5
NVD
NVD
added 2018/10/03 8:29 p.m.12 views

CVE-2018-17428

An issue was discovered in OPAC EasyWeb Five 5.7. There is SQL injection via the w2001/index.php?scelta=campi biblio parameter...

9.8CVSS9.9AI score0.02839EPSS
Exploits1References1
OSV
OSV
added 2018/10/03 8:29 p.m.2 views

CVE-2018-17428

An issue was discovered in OPAC EasyWeb Five 5.7. There is SQL injection via the w2001/index.php?scelta=campi biblio parameter...

9.8CVSS5.8AI score0.02839EPSS
Exploits1References1
Prion
Prion
added 2018/10/03 8:29 p.m.10 views

Sql injection

An issue was discovered in OPAC EasyWeb Five 5.7. There is SQL injection via the w2001/index.php?scelta=campi biblio parameter...

7.5CVSS9.8AI score0.02839EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/10/03 8:0 p.m.15 views

CVE-2018-17428

An issue was discovered in OPAC EasyWeb Five 5.7. There is SQL injection via the w2001/index.php?scelta=campi biblio parameter...

9.9AI score0.02839EPSS
Exploits1References1
CVE
CVE
added 2018/10/03 8:0 p.m.37 views

CVE-2018-17428

CVE-2018-17428 affects OPAC EasyWeb Five 5.7, with a SQL injection in the w2001/index.php?scelta=campi biblio parameter. The issue is a database query vulnerability in the web application component; CVSS data from multiple sources show a high to critical impact (C/I/A with partial/high implicatio...

9.8CVSS9.8AI score0.02839EPSS
Exploits1References1Affected Software1
Packet Storm
Packet Storm
added 2018/10/03 12:0 a.m.49 views

OPAC EasyWeb Five 5.7 nome SQL Injection

Exploit Title: OPAC EasyWeb Five 5.7 - 'nome' SQL Injection Dork: N/A Exploit Author: Ihsan Sencan Date: 2018-10-02 Vendor Homepage: http://www.nexusfi.it/ Software Link: http://www.nexusfi.it/easyweb.php Version: 5.7 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: N/A POC: 1 POST...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2018/10/03 12:0 a.m.57 views

OPAC EasyWeb Five 5.7 biblio SQL Injection

Exploit Title: OPAC EasyWeb Five 5.7 - 'biblio' SQL Injection Dork: inurl:"index.php?scelta=campi" Date: 2018-10-02 Exploit Author: Dino Barlattani Vendor Homepage: http://www.nexusfi.it/ Software Link: http://www.nexusfi.it/easyweb.php Version: 5.7 Category: Webapps Platform: PHP CVE: N/A POC:...

1.1AI score
Exploits0
0day.today
0day.today
added 2018/10/02 12:0 a.m.21 views

OPAC EasyWeb Five 5.7 - nome SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: OPAC EasyWeb Five 5.7 - 'nome' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: http://www.nexusfi.it/ Software Link: http://www.nexusfi.it/easyweb.php Version: 5.7 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CV...

0.7AI score
Exploits0
0day.today
0day.today
added 2018/10/02 12:0 a.m.23 views

OPAC EasyWeb Five 5.7 - biblio SQL Injection Vulnerability

Exploit for php platform in category web applications...

2.7AI score
Exploits0
exploitpack
exploitpack
added 2018/10/02 12:0 a.m.11 views

OPAC EasyWeb Five 5.7 - nome SQL Injection

OPAC EasyWeb Five 5.7 - nome SQL Injection Exploit Title: OPAC EasyWeb Five 5.7 - 'nome' SQL Injection Dork: N/A Exploit Author: Ihsan Sencan Date: 2018-10-02 Vendor Homepage: http://www.nexusfi.it/ Software Link: http://www.nexusfi.it/easyweb.php Version: 5.7 Category: Webapps Tested on:...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/10/02 12:0 a.m.27 views

OPAC EasyWeb Five 5.7 - 'biblio' SQL Injection

Exploit Title: OPAC EasyWeb Five 5.7 - 'biblio' SQL Injection Dork: inurl:"index.php?scelta=campi" Date: 2018-10-02 Exploit Author: Dino Barlattani Vendor Homepage: http://www.nexusfi.it/ Software Link: http://www.nexusfi.it/easyweb.php Version: 5.7 Category: Webapps Platform: PHP CVE: N/A POC:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/10/02 12:0 a.m.27 views

OPAC EasyWeb Five 5.7 - 'nome' SQL Injection

Exploit Title: OPAC EasyWeb Five 5.7 - 'nome' SQL Injection Dork: N/A Exploit Author: Ihsan Sencan Date: 2018-10-02 Vendor Homepage: http://www.nexusfi.it/ Software Link: http://www.nexusfi.it/easyweb.php Version: 5.7 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: N/A POC: 1 POST...

7AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

EasyWeb 1.0 FileManager Module Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10792/info EasyWeb is prone to a directory traversal vulnerability. This issue presents itself due to insufficient sanitization of user-supplied data. The issue occurs if a remote attacker sends a request to the...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2012/09/03 12:0 a.m.40 views

EasyWeb SQL Injection

Exploit Title: easyweb SQLi Vulnerability Date: 09/03/2012 Author: Persia Security Group - Prince & mafia1990 Vendor Homepage: http://www.easy-web.it/ Version: All Version Google Dork: intext:"powered by easyweb" site:it Tested on: win 2003 & 2008 server , Vista , 7 & IIS 6.0, 7.0, 7.5...

0.2AI score
Exploits0
0day.today
0day.today
added 2011/03/13 12:0 a.m.53 views

Easyweb Paket 4 SQL Injection Vulnerability

Exploit for php platform in category web applications Title : Easyweb Paket 4 SQl Injection Vulnerability Author: CSI Home : www.cyber-warrior.org Email : email protected date : 11/3/2011 D0rk :intext:"Easyweb Paket 4" Script Vendor: http://www.artwin.net/ SQL...

7.1AI score
Exploits0
CVE
CVE
added 2005/05/10 4:0 a.m.54 views

CVE-2004-2047

The CVE-2004-2047 vulnerability affects EasyWeb FileManager 1.0 RC-1 for PostNuke. A directory traversal flaw in the pathext parameter allows an attacker to read arbitrary files on the server, as demonstrated by examples like ../../file. The issue is documented across multiple sources (NVD/Nessus...

5CVSS6.8AI score0.08092EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder