Lucene search
K

125 matches found

Prion
Prion
added 2023/08/21 2:15 a.m.39 views

Design/Logic Flaw

A vulnerability was found in OpenRapid RapidCMS 1.3.1 and classified as critical. This issue affects some unknown processing of the file admin/run-movepass.php. The manipulation of the argument password/password2 leads to weak password recovery. The attack may be initiated remotely. The exploit h...

6.5CVSS9.6AI score0.00542EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/21 2:0 a.m.14 views

CVE-2023-4448 OpenRapid RapidCMS run-movepass.php password recovery

A vulnerability was found in OpenRapid RapidCMS 1.3.1 and classified as critical. This issue affects some unknown processing of the file admin/run-movepass.php. The manipulation of the argument password/password2 leads to weak password recovery. The attack may be initiated remotely. The exploit h...

6.5CVSS7AI score0.00542EPSS
Exploits0References4
CVE
CVE
added 2023/08/21 2:0 a.m.160 views

CVE-2023-4448

OpenRapid RapidCMS 1.3.1 is affected by a vulnerability in admin/run-movepass.php where manipulating password/password2 can cause weak password recovery. Remote attack potential is stated, and a patch with identifier 4dff387283060961c362d50105ff8da8ea40bcbe is available (VDB-237569). No exploit d...

9.8CVSS8.1AI score0.00542EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/08/21 2:0 a.m.23 views

CVE-2023-4448 OpenRapid RapidCMS run-movepass.php password recovery

A vulnerability was found in OpenRapid RapidCMS 1.3.1 and classified as critical. This issue affects some unknown processing of the file admin/run-movepass.php. The manipulation of the argument password/password2 leads to weak password recovery. The attack may be initiated remotely. The exploit h...

6.5CVSS9.9AI score0.00542EPSS
Exploits0References4
OSV
OSV
added 2023/08/21 2:0 a.m.20 views

CVE-2023-4448 OpenRapid RapidCMS run-movepass.php password recovery

A vulnerability was found in OpenRapid RapidCMS 1.3.1 and classified as critical. This issue affects some unknown processing of the file admin/run-movepass.php. The manipulation of the argument password/password2 leads to weak password recovery. The attack may be initiated remotely. The exploit h...

6.3CVSS6AI score0.00542EPSS
Exploits0References6
CVE
CVE
added 2023/08/21 1:31 a.m.140 views

CVE-2023-4447

OpenRapid RapidCMS 1.3.1 is affected by a SQL injection in admin/article-chat.php caused by unsafely manipulating the id parameter. The vulnerability can be exploited remotely and has been publicly disclosed under CVE-2023-4447. Multiple sources (NVD, Red Hat, OSV, CVE List) describe the issue as...

9.8CVSS8.4AI score0.00526EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/08/21 1:31 a.m.27 views

CVE-2023-4447 OpenRapid RapidCMS article-chat.php sql injection

A vulnerability has been found in OpenRapid RapidCMS 1.3.1 and classified as critical. This vulnerability affects unknown code of the file admin/article-chat.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to th...

6.5CVSS10AI score0.00526EPSS
Exploits0References3
OSV
OSV
added 2023/08/21 1:31 a.m.11 views

CVE-2023-4447 OpenRapid RapidCMS article-chat.php sql injection

A vulnerability has been found in OpenRapid RapidCMS 1.3.1 and classified as critical. This vulnerability affects unknown code of the file admin/article-chat.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to th...

6.3CVSS6.6AI score0.00526EPSS
Exploits0References5
NVD
NVD
added 2023/08/21 1:15 a.m.14 views

CVE-2023-4446

A vulnerability, which was classified as critical, was found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file template/default/category.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The associate...

9.8CVSS6.9AI score0.00606EPSS
Exploits1References3
Prion
Prion
added 2023/08/21 1:15 a.m.13 views

Sql injection

A vulnerability, which was classified as critical, was found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file template/default/category.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The associate...

5.2CVSS9.7AI score0.00606EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/08/21 1:0 a.m.16 views

CVE-2023-4446 OpenRapid RapidCMS category.php sql injection

A vulnerability, which was classified as critical, was found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file template/default/category.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The associate...

5.5CVSS10AI score0.00606EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/08/21 1:0 a.m.12 views

CVE-2023-4446 OpenRapid RapidCMS category.php sql injection

A vulnerability, which was classified as critical, was found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file template/default/category.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The associate...

5.5CVSS7.3AI score0.00606EPSS
Exploits1References3
CVE
CVE
added 2023/08/21 1:0 a.m.52 views

CVE-2023-4446

OpenRapid RapidCMS 1.3.1 is affected by a SQL injection in the file template/default/category.php via manipulation of the id parameter. Reported as critical; attack surface relates to the affected category.php code path, with potential impact on confidentiality, integrity, and availability. No fi...

9.8CVSS7.8AI score0.00606EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/08/21 1:0 a.m.14 views

CVE-2023-4446 OpenRapid RapidCMS category.php sql injection

A vulnerability, which was classified as critical, was found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file template/default/category.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The associate...

5.5CVSS6.2AI score0.00606EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/08/21 12:0 a.m.4 views

OpenRapid RapidCMS SQL注入漏洞

OpenRapid RapidCMS is OpenRapid open source a fast and easy to use CMS system. A SQL injection vulnerability exists in OpenRapid RapidCMS version 1.3.1, which stems from the incorrect manipulation of the parameter id can lead to sql injection...

9.8CVSS6.5AI score0.00606EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/08/21 12:0 a.m.4 views

OpenRapid RapidCMS 授权问题漏洞

OpenRapid RapidCMS is OpenRapid open source a fast and simple to use CMS system. An authorization issue vulnerability exists in OpenRapid RapidCMS version 1.3.1, which stems from the fact that incorrect manipulation of the parameters password/password2 can lead to weak password recovery...

9.8CVSS6.8AI score0.00542EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/08/21 12:0 a.m.4 views

OpenRapid RapidCMS SQL注入漏洞

OpenRapid RapidCMS is OpenRapid open source a fast and easy to use CMS system. A SQL injection vulnerability exists in OpenRapid RapidCMS version 1.3.1, which stems from the incorrect manipulation of the parameter id can lead to sql injection...

9.8CVSS7.1AI score0.00526EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/08/21 12:0 a.m.4 views

PT-2023-29244 · Openrapid · Openrapid Rapidcms

Name of the Vulnerable Software and Affected Versions: OpenRapid RapidCMS version 1.3.1 Description: A critical issue was found in OpenRapid RapidCMS, affecting the file template/default/category.php. The manipulation of the id argument leads to SQL injection. Recommendations: For OpenRapid...

9.8CVSS6.3AI score0.00606EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2023/08/21 12:0 a.m.6 views

PT-2023-29249 · Openrapid · Openrapid Rapidcms

Name of the Vulnerable Software and Affected Versions: OpenRapid RapidCMS version 1.3.1 Description: A critical issue has been found in the file admin/article-chat.php, where the manipulation of the id argument leads to SQL injection. The attack can be initiated remotely. Recommendations: For...

9.8CVSS7.2AI score0.00526EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/08/20 12:0 a.m.10 views

PT-2023-8849 · Openrapid +1 · Openrapid Rapidcms +1

Name of the Vulnerable Software and Affected Versions: OpenRapid RapidCMS version 1.3.1 Description: A critical issue affects the processing of the file admin/run-movepass.php, where the manipulation of the password and password2 arguments leads to weak password recovery. The attack can be...

10CVSS6.4AI score0.03796EPSS
Exploits1References11
Rows per page
Query Builder