Lucene search
K

5 matches found

CNVD
CNVD
added 2020/10/29 12:0 a.m.4 views

Unspecified Vulnerability in Citadel WebCit

WebCit is the Citadel Servlet engine. A security vulnerability exists in Citadel WebCit 926 and earlier versions. A remote authentication attacker can exploit this vulnerability to read someone's email via the msgconfirmmove template...

6.5CVSS7.1AI score0.01136EPSS
Exploits1References1
CNVD
CNVD
added 2020/10/29 12:0 a.m.1 views

Citadel WebCit User Enumeration Vulnerability

WebCit is the Citadel Servlet engine. A user enumeration vulnerability exists in Citadel WebCit 926 and earlier versions. A remote, unauthenticated attacker could exploit this vulnerability to enumerate valid users within the platform to obtain sensitive information...

5.3CVSS6.8AI score0.01277EPSS
Exploits1References1
OSV
OSV
added 2020/10/28 7:15 p.m.2 views

UBUNTU-CVE-2020-27742

An Insecure Direct Object Reference vulnerability in Citadel WebCit through 926 allows authenticated remote attackers to read someone else's emails via the msgconfirmmove template. NOTE: this was reported to the vendor in a publicly archived "Multiple Security Vulnerabilities in WebCit 926" threa...

6.5CVSS6.6AI score0.01136EPSS
Exploits1References4
OSV
OSV
added 2020/10/28 7:15 p.m.4 views

UBUNTU-CVE-2020-27741

Multiple cross-site scripting XSS vulnerabilities in Citadel WebCit through 926 allow remote attackers to inject arbitrary web script or HTML via multiple pages and parameters. NOTE: this was reported to the vendor in a publicly archived "Multiple Security Vulnerabilities in WebCit 926" thread...

6.1CVSS6.5AI score0.00831EPSS
Exploits1References4
OSV
OSV
added 2020/10/28 7:15 p.m.3 views

UBUNTU-CVE-2020-27740

Citadel WebCit through 926 allows unauthenticated remote attackers to enumerate valid users within the platform. NOTE: this was reported to the vendor in a publicly archived "Multiple Security Vulnerabilities in WebCit 926" thread...

5.3CVSS5.8AI score0.01277EPSS
Exploits1References4
Rows per page
Query Builder