Lucene search
K

72 matches found

CNVD
CNVD
added 2023/05/08 12:0 a.m.8 views

SQL Injection Vulnerability in RPCMS

RPCMS is an open source PHP content management system based on PHP language and MYSQL database. RPCMS has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

7.9AI score
Exploits0
NVD
NVD
added 2022/10/13 2:15 p.m.17 views

CVE-2022-41474

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily change the password of any account...

6.5CVSS0.00298EPSS
Exploits1References1
OSV
OSV
added 2022/10/13 2:15 p.m.2 views

CVE-2022-41475

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily add an administrator account...

8.8CVSS5.8AI score0.00375EPSS
Exploits1References1
OSV
OSV
added 2022/10/13 2:15 p.m.3 views

CVE-2022-41473

RPCMS v3.0.2 was discovered to contain a reflected cross-site scripting XSS vulnerability in the Search function...

6.1CVSS5.7AI score0.01012EPSS
Exploits1References1
OSV
OSV
added 2022/10/13 2:15 p.m.4 views

CVE-2022-41474

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily change the password of any account...

6.5CVSS5.8AI score0.00298EPSS
Exploits1References1
NVD
NVD
added 2022/10/13 2:15 p.m.24 views

CVE-2022-41475

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily add an administrator account...

8.8CVSS0.00375EPSS
Exploits1References1
NVD
NVD
added 2022/10/13 2:15 p.m.26 views

CVE-2022-41473

RPCMS v3.0.2 was discovered to contain a reflected cross-site scripting XSS vulnerability in the Search function...

6.1CVSS0.01012EPSS
Exploits1References1
Prion
Prion
added 2022/10/13 2:15 p.m.14 views

Cross site scripting

RPCMS v3.0.2 was discovered to contain a reflected cross-site scripting XSS vulnerability in the Search function...

5.8CVSS6AI score0.01012EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/10/13 2:15 p.m.12 views

Cross site request forgery (csrf)

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily change the password of any account...

4.3CVSS6.7AI score0.00298EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/10/13 2:15 p.m.14 views

Cross site request forgery (csrf)

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily add an administrator account...

6.8CVSS8.8AI score0.00375EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/10/13 12:0 a.m.5 views

PT-2022-25880 · Rpcms · Rpcms

Name of the Vulnerable Software and Affected Versions: RPCMS version 3.0.2 Description: A reflected cross-site scripting XSS issue was found in the Search function. This could potentially allow an attacker to inject malicious scripts into the website. Recommendations: For RPCMS version 3.0.2,...

6.1CVSS5.9AI score0.01012EPSS
Exploits1References3
CVE
CVE
added 2022/10/13 12:0 a.m.70 views

CVE-2022-41473

RPCMS 3.0.2 contains a reflected Cross-Site Scripting (XSS) vulnerability in the Search function. An attacker can inject arbitrary script in the victim’s browser, potentially stealing cookie-based credentials and enabling additional browser-based attacks. Affected product: RPCMS 3.0.2; vulnerabil...

6.1CVSS6AI score0.01012EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/10/13 12:0 a.m.19 views

CVE-2022-41474

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily change the password of any account...

6.9AI score0.00298EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/10/13 12:0 a.m.9 views

CVE-2022-41475

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily add an administrator account...

8.9AI score0.00375EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/10/13 12:0 a.m.24 views

CVE-2022-41473

RPCMS v3.0.2 was discovered to contain a reflected cross-site scripting XSS vulnerability in the Search function...

6.2AI score0.01012EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/10/13 12:0 a.m.5 views

CVE-2022-41474

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily change the password of any account...

6.7AI score0.00298EPSS
Exploits1References1
CVE
CVE
added 2022/10/13 12:0 a.m.42 views

CVE-2022-41475

RPCMS v3.0.2 is affected by a Cross-Site Forgery (CSRF) vulnerability that allows attackers to arbitrarily add an administrator account. The incident is documented across multiple sources (NVD CVE-2022-41475, Red Hat, PRion, CNNVD, CVE listings) with a common description. The CVSS v3.1 base score...

8.8CVSS8.8AI score0.00375EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2022/10/13 12:0 a.m.13 views

RPCMS 跨站脚本漏洞

RPCMS is a software application. A website CMS system. A security vulnerability exists in RPCMS version v3.0.2 that stems from the inclusion of reflected cross-site scripting XSS in the search function...

6.1CVSS5.9AI score0.01012EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/10/13 12:0 a.m.5 views

CVE-2022-41473

RPCMS v3.0.2 was discovered to contain a reflected cross-site scripting XSS vulnerability in the Search function...

6AI score0.01012EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/10/13 12:0 a.m.24 views

CVE-2022-41475

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily add an administrator account...

9AI score0.00375EPSS
Exploits1References1
Rows per page
Query Builder