63 matches found
CVE-2023-51949
Verydows v2.0 was discovered to contain a Cross-Site Request Forgery CSRF via the component /protected/controller/backend/rolecontroller...
Cross site request forgery (csrf)
Verydows v2.0 was discovered to contain a Cross-Site Request Forgery CSRF via the component /protected/controller/backend/rolecontroller...
Verydows Cross-Site Request Forgery Vulnerability
Verydows is a lightweight open source e-commerce management system developed in PHP. Verydows v2.0 version exists cross-site request forgery vulnerability , the vulnerability stems from the component /protected/controller/backend/rolecontroller contains cross-site request forgery...
CVE-2023-51949
Verydows v2.0 was discovered to contain a Cross-Site Request Forgery CSRF via the component /protected/controller/backend/rolecontroller...
CVE-2023-51949
Verydows v2.0 is affected by a Cross-Site Request Forgery (CSRF) vulnerability in the component /protected/controller/backend/role_controller. These sources (NVD, Red Hat, CNNVD, PRiON/PT-Security, CVE list, etc.) consistently describe CSRF via that path, with CVSS v3.1 base score 8.8 (HIGH) and ...
PT-2024-14335 · Verydows · Verydows
Name of the Vulnerable Software and Affected Versions: Verydows version 2.0 Description: The issue is related to a Cross-Site Request Forgery CSRF in the /protected/controller/backend/role controller component. This allows for unauthorized actions to be performed on behalf of a user without their...
CVE-2023-51949
Verydows v2.0 was discovered to contain a Cross-Site Request Forgery CSRF via the component /protected/controller/backend/rolecontroller...
CVE-2020-23363
Cross Site Request Forgery CSRF vulnerability found in Verytops Verydows all versions that allows an attacker to execute arbitrary code via a crafted script...
Cross site request forgery (csrf)
Cross Site Request Forgery CSRF vulnerability found in Verytops Verydows all versions that allows an attacker to execute arbitrary code via a crafted script...
Verydows 跨站请求伪造漏洞
Verydows is a lightweight open source e-commerce management system developed using the PHP language. Verytops Verydows suffers from a security vulnerability that stems from the presence of a cross-site request forgery CSRF vulnerability, which allows an attacker to execute arbitrary code via a...
CVE-2020-23363
Cross Site Request Forgery CSRF vulnerability found in Verytops Verydows all versions that allows an attacker to execute arbitrary code via a crafted script...
CVE-2020-23363
CVE-2020-23363 concerns a Cross-Site Request Forgery (CSRF) vulnerability in Verytops Verydows, reported to affect all versions and potentially allow an attacker to execute arbitrary code via a crafted script. The provided connected documents do not contain concrete technical details such as affe...
CVE-2020-23363
Cross Site Request Forgery CSRF vulnerability found in Verytops Verydows all versions that allows an attacker to execute arbitrary code via a crafted script...
CVE-2022-28059
Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\databasecontroller.php...
CVE-2022-28058
Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\filecontroller.php...
CVE-2022-28059
Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\databasecontroller.php...
CVE-2022-28058
Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\filecontroller.php...
CVE-2022-28059
Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\databasecontroller.php...
CVE-2022-28058
Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\filecontroller.php...
Arbitrary file deletion
Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend\filecontroller.php...