30 matches found
EUVD-2020-18617
Malware in sbrugna...
EUVD-2020-18616
Malware in sbrugna...
EUVD-2020-21070
Malware in sbrugna...
EUVD-2020-18615
Malware in sbrugna...
CVE-2020-25986
A Cross Site Request Forgery CSRF vulnerability in MonoCMS Blog 1.0 allows attackers to change the password of a user...
CVE-2020-25985
MonoCMS Blog 1.0 is affected by: Arbitrary File Deletion. Any authenticated user can delete files on and off the webserver php files can be unlinked and not deleted...
CVE-2020-28672
MonoCMS Blog 1.0 is affected by incorrect access control that can lead to remote arbitrary code execution. At monofiles/category.php:27, user input can be saved to category/foldername/index.php causing RCE...
CVE-2020-25987
MonoCMS Blog 1.0 stores hard-coded admin hashes in the log.xml file in the source files for MonoCMS Blog. Hash type is bcrypt and hashcat mode 3200 can be used to crack the hash...
MonoCMS Blog Access Control Error Vulnerability
Mono is an open source software platform for creating .NET cross-platform applications. MonoCMS Blog 1.0 suffers from an Access Control Error vulnerability that stems from incorrect access control and leads to remote execution of arbitrary code...
CVE-2020-28672
MonoCMS Blog 1.0 is affected by incorrect access control that can lead to remote arbitrary code execution. At monofiles/category.php:27, user input can be saved to category/foldername/index.php causing RCE...
CVE-2020-28672
MonoCMS Blog 1.0 is affected by incorrect access control that can lead to remote arbitrary code execution. At monofiles/category.php:27, user input can be saved to category/foldername/index.php causing RCE...
Design/Logic Flaw
MonoCMS Blog 1.0 is affected by incorrect access control that can lead to remote arbitrary code execution. At monofiles/category.php:27, user input can be saved to category/foldername/index.php causing RCE...
CVE-2020-28672
MonoCMS Blog 1.0 is affected by an Access Control Error that can lead to remote arbitrary code execution. The issue arises at monofiles/category.php:27, where user input can be saved to category/[foldername]/index.php, enabling RCE. This CVE is CVE-2020-28672. The connected sources corroborate a ...
CVE-2020-28672
MonoCMS Blog 1.0 is affected by incorrect access control that can lead to remote arbitrary code execution. At monofiles/category.php:27, user input can be saved to category/foldername/index.php causing RCE...
MonoCMS Blog Information Disclosure Vulnerability
Mono is a free and open source project hosted by Xamarin previously Novell, first Ximian. A security vulnerability exists in version 1.0 of MonoCMS Blog, which stems from storing a hard-coded administrative hash in the log.xml file in the source file of MonoCMS Blog, with hash type bcrypt and has...
CVE-2020-25985
MonoCMS Blog 1.0 is affected by: Arbitrary File Deletion. Any authenticated user can delete files on and off the webserver php files can be unlinked and not deleted...
CVE-2020-25985
MonoCMS Blog 1.0 is affected by: Arbitrary File Deletion. Any authenticated user can delete files on and off the webserver php files can be unlinked and not deleted...
CVE-2020-25985
CVE-2020-25985 affects MonoCMS Blog 1.0. The vulnerability is described as Arbitrary File Deletion: any authenticated user can delete files on and off the webserver, with PHP files potentially unlinked rather than deleted. The connected documents confirm this as the concrete issue, but do not pro...
CVE-2020-25985
MonoCMS Blog 1.0 is affected by: Arbitrary File Deletion. Any authenticated user can delete files on and off the webserver php files can be unlinked and not deleted...
CVE-2020-25986
A Cross Site Request Forgery CSRF vulnerability in MonoCMS Blog 1.0 allows attackers to change the password of a user...