27 matches found
CVE-2024-29316
NodeBB 3.6.7 is vulnerable to Incorrect Access Control, e.g., a low-privileged attacker can access the restricted tabs for the Admin group via "isadmin":true...
KubePi 安全漏洞
KubePi is a K8s panel. It allows administrators to import multiple Kubernetes clusters and assign permissions for different clusters, namespaces to specified users through permission control. A security vulnerability exists in KubePi versions prior to 1.6.5, which stems from the fact that normal...
SUSE CVE-2015-7707
Ignite Realtime Openfire 3.10.2 allows remote authenticated users to gain administrator access via the isadmin parameter to user-edit-form.jsp...
Webyog Monyog 安全漏洞
Webyog Monyog is Webyog's database tool for MySQL and MariaDB. Agentless and cost-effective database monitoring and management. A security vulnerability exists in Webyog Monyog Ultimate version 6.63, which stems from a problem with HasServerEdit/IsAdmin. The vulnerability can be exploited by an...
Code injection
Ignite Realtime Openfire 3.10.2 allows remote authenticated users to gain administrator access via the isadmin parameter to user-edit-form.jsp...
CVE-2008-4591
Multiple cross-site scripting XSS vulnerabilities in admin/include/isadmin.inc.php in PhpWebGallery 1.3.4 allow remote attackers to inject arbitrary web script or HTML via the 1 langaccessforbiden and 2 langidenttitle parameters...
Trend Micro Interscan VirusWall 3.01 vulnerability
Trend Micro Interscan VirusWall 3.01 vulnerability Release Date: April 12, 2001 Systems Affected: Linux Systems with Interscan VirusWall 3.01 and most likely older versions Remote Administration Enabled. Other Unix variants are most likely vulnerable also. Description: A combination of bugs found...