7 matches found
EUVD-2005-2169
Malware in sbrugna...
CVE-2020-10488
CSRF in admin/manage-news.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete a news article via a crafted request...
PT-2020-12158 · Chadha · Chadha Phpkb Standard Multi-Language
Name of the Vulnerable Software and Affected Versions: Chadha PHPKB Standard Multi-Language version 9 Description: The issue allows attackers to delete a news article via a crafted request to the "admin/manage-news.php" endpoint. This is made possible by a CSRF flaw. Recommendations: For Chadha...
CVE-2012-1297
Multiple cross-site request forgery CSRF vulnerabilities in main.php in Contao formerly TYPOlight 2.11.0 and earlier allow remote attackers to hijack the authentication of administrators for requests that 1 delete users via a delete action in the user module, 2 delete news via a delete action in...
CVE-2012-1297
Multiple cross-site request forgery CSRF vulnerabilities in main.php in Contao formerly TYPOlight 2.11.0 and earlier allow remote attackers to hijack the authentication of administrators for requests that 1 delete users via a delete action in the user module, 2 delete news via a delete action in...
Ce-Admin news publishing system vulnerability analysis-vulnerability warning-the black bar safety net
The news publishing system is currently mainly used for a picture news release, due to the generated html, the browsing speed is very fast, resulting in a more modified version, currently found in at least 4 modified version, the user group of the majority, although modified, but still there are...
MySimpleNews (PHP)
Informations : °°°°°°°°°°°°°° Language : PHP Tested version : 1 Website : ? Comment : Very simple code. a Writing PHP code in a PHP file and execution of this code. Problem : °°°°°°°°° ----------------- users.php ----------------- ? $fp=fopen"news.php3","a"; fwrite$fp,"Post Par $LOGINn";...