Lucene search
K

6 matches found

EUVD
EUVD
added 8 hours ago5 views

EUVD-2026-41805

A flaw has been found in Craft CMS up to 4.18.0.1. Affected by this vulnerability is the function actionGetNewUsersData of the file src/controllers/ChartsController.php of the component Charts Endpoint. This manipulation of the argument userGroupId causes improper authorization. The attack is...

5.3CVSS5.5AI score
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-26707

Malware in sbrugna...

8.8CVSS8.7AI score0.01103EPSS
Exploits1References2
CNVD
CNVD
added 2021/12/19 12:0 a.m.16 views

CuppaCMS Elevation of Privilege Vulnerability

CuppaCMS is a Content Management System CMS. An elevation of privilege vulnerability exists in CuppaCMS, which stems from a faulty programmatic call to a high-level native procedure. An authenticated attacker uses the usergroupidfield parameter to gain escalated privileges via a crafted POST...

8.8CVSS4.6AI score0.01103EPSS
Exploits1References1
OSV
OSV
added 2021/12/14 2:15 p.m.1 views

CVE-2021-3376

An issue was discovered in Cuppa CMS Versions Before 31 Jan 2021 allows authenticated attackers to gain escalated privileges via a crafted POST request using the usergroupidfield parameter...

8.8CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2020/10/29 3:44 p.m.4 views

SUSE-SU-2020:3094-1 Security update for pacemaker

This update for pacemaker fixes the following issues: - attrd: handle shutdown more cleanly bsc1173668 - executor: restrict certain IPC requests to Pacemaker daemons CVE-2020-25654, bsc1177916 - extra: quote shell variables in agent code where appropriate bsc1175557 - fencer: restrict certain IPC...

9CVSS6.8AI score0.02002EPSS
Exploits0References6
CNVD
CNVD
added 2018/11/20 12:0 a.m.3 views

K-iwi Framework SQL Injection Vulnerability

K-iwi Framework is an open source application development framework developed using PHP. A SQL injection vulnerability exists in K-iwi Framework version 1775. A remote attacker can exploit this vulnerability by sending the 'usergroupid' parameter or the 'userid' parameter to admin/user/group/upda...

9.8CVSS9.7AI score0.03099EPSS
Exploits5References1
Rows per page
Query Builder