Lucene search
K

9 matches found

CVE
CVE
added 2025/12/24 7:27 p.m.16 views

CVE-2018-25149

CVE-2018-25149 affects Microhard Systems IPn4G 1.1.0. The vulnerability is a cross-site request forgery (CSRF) in the device’s web interface that allows an attacker to induce administrative actions without user consent by tricking an authenticated user into loading a malicious page. Documented im...

6.5CVSS6.3AI score0.00194EPSS
Exploits2References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.16 views

PT-2025-53369

Microhard Systems IPn4G 1.1.0 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft malicious web pages to change admin passwords, add new users, and modify system settings by tricking authenticated...

5.1CVSS6.7AI score0.00194EPSS
Exploits2References4
NVD
NVD
added 2025/11/20 7:16 p.m.6 views

CVE-2025-55127

HackerOne community member Dao Hoang Anh yoyomiski has reported an improper neutralization of whitespace in the username when adding new users. A username with leading or trailing whitespace could be virtually indistinguishable from its legitimate counterpart when the username is displayed in the...

5.4CVSS0.0022EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:22 p.m.7 views

CVE-2020-35382

SQL Injection in Classbooking before 2.4.1 via the username field of a CSV file when adding a new user...

7.2CVSS8.2AI score0.01028EPSS
Exploits1
OSV
OSV
added 2020/11/24 3:15 p.m.5 views

CVE-2020-25472

SimplePHPscripts News Script PHP Pro 2.3 is affected by a Cross Site Request Forgery CSRF vulnerability, which allows attackers to add new users...

6.5CVSS6.6AI score0.00513EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2019/09/30 12:0 a.m.6 views

VulnCheck KEV: CVE-2019-17049

NETGEAR SRX5308 4.3.5-3 devices allow SQL Injection, as exploited in the wild in September 2019 to add a new user account...

7.5CVSS7.2AI score0.0113EPSS
Exploits1References1
OSV
OSV
added 2018/11/17 3:29 p.m.2 views

CVE-2018-19332

An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI...

8.8CVSS5.8AI score0.00465EPSS
Exploits1References1
Metasploit
Metasploit
added 2015/02/11 6:38 p.m.35 views

PXE Boot Exploit Server

This module provides a PXE server, running a DHCP and TFTP server. The default configuration loads a linux kernel and initrd into memory that reads the hard drive; placing a payload to install metsvc, disable the firewall, and add a new user metasploit on any Windows partition seen, and add a uid...

7AI score
Exploits0
Cvelist
Cvelist
added 2014/10/23 2:0 p.m.22 views

CVE-2014-8073

Cross-site request forgery CSRF vulnerability in OpenMRS 2.1 Standalone Edition allows remote attackers to hijack the authentication of administrators for requests that add a new user via a Save User action to admin/users/user.form...

7AI score0.01062EPSS
Exploits2References3
Rows per page
Query Builder