86 matches found
CVE-2020-2004
Under certain circumstances a user's password may be logged in cleartext in the PanGPS.log diagnostic file when logs are collected for troubleshooting on GlobalProtect app also known as GlobalProtect Agent for MacOS and Windows. For this issue to occur all of these conditions must be true: 1 'Sav...
Microweber Cross-Site Request Forgery Vulnerability
Microweber is an online store management system that provides drag and drop functionality from the Microweber community in the United States. The system includes modules for adding products, images, and more. A cross-site request forgery vulnerability exists in Microweber version 1.0.7. A remote...
SyndeoCMS Cross-Site Request Forgery Vulnerability
SyndeoCMS is a content management system for elementary schools. A cross-site request forgery vulnerability exists in SyndeoCMS 3.0 and prior versions that allows remote attackers to hijack the authentication of an administrator's request to add a user account, saveuser...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in OpenMRS 2.1 Standalone Edition allows remote attackers to hijack the authentication of administrators for requests that add a new user via a Save User action to admin/users/user.form...
Absolute Form Processor XE-V 1.5 Password Changer
Absolute Form Processor XE-V 1.5 Remote Change Pasword Home:http://www.xigla.com E-mail : Username : Password : input type="password" name="pwd" size="40" value...
Absolute Form Processor XE-V 1.5 - Remote Change Password
Absolute Form Processor XE-V 1.5 Remote Change Pasword Home:http://www.xigla.com E-mail : Username : Password : td wid...