25 matches found
CVE-2016-10738
Zenbership v107 has CSRF via admin/cp-functions/event-add.php...
EUVD-2016-1735
Malware in sbrugna...
EUVD-2017-18689
Malware in sbrugna...
Castlamp Zenbership Cross-Site Request Forgery Vulnerability
Castlamp Zenbership is an open source and free membership CRM software from Castlamp USA. The software is capable of providing a specialized customer relationship management system for membership sites. A cross-site request forgery vulnerability exists in Castlamp Zenbership version 107, which ca...
CVE-2016-10738
Zenbership v107 has CSRF via admin/cp-functions/event-add.php...
CVE-2016-10738
Zenbership v107 has CSRF via admin/cp-functions/event-add.php...
Design/Logic Flaw
Zenbership v107 has CSRF via admin/cp-functions/event-add.php...
CVE-2016-10738
Zenbership v107 has CSRF via admin/cp-functions/event-add.php...
CVE-2016-10738
Zenbership v107 is affected by a CSRF vulnerability located at admin/cp-functions/event-add.php. The description explicitly states CSRF via that endpoint, indicating potential unauthorized operations could be triggered by attackers. No concrete patch/version remediation details are provided in th...
Sql injection
SQL Injection exists in admin/index.php in Zenbership 1.0.8 via the filters array parameter, exploitable by a privileged account...
CVE-2017-9759
SQL Injection exists in admin/index.php in Zenbership 1.0.8 via the filters array parameter, exploitable by a privileged account...
CVE-2017-9759
SQL Injection exists in admin/index.php in Zenbership 1.0.8 via the filters array parameter, exploitable by a privileged account...
CVE-2017-9759
The vulnerability is a SQL Injection in the open-source CMS Zenbership version 1.0.8, located in the admin/index.php handling the filters array parameter. The issue is exploitable by a privileged account, as described in CVE-2017-9759. The connected sources consistently report this exact flaw but...
CVE-2017-9759
SQL Injection exists in admin/index.php in Zenbership 1.0.8 via the filters array parameter, exploitable by a privileged account...
Zenbership 1.0.8 CMS - Multiple SQL Injection Vulnerabilities
Zenbership is vulnerable to multiple SQL injection vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Zenbership SQL Injection Vulnerability
Zenbership is an open source customer relationship management platform. A SQL injection vulnerability exists in Zenbership version 1.0.8. An attacker can exploit this vulnerability to obtain sensitive information from the database...
Zenbership CMS Version Detection
Detects the installed version of Zenbership CMS. The script sends an HTTP request to the server and attempts to detect the application from the reply. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respecti...
Zenbership CMS 1.0.8 SQL Injection
Document Title: =============== Zenbership 1.0.8 CMS - Multiple SQL Injection Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2073 Release Date: ============= 2017-06-09 Vulnerability Laboratory ID VL-ID:...
Zenbership 1.0.8 CMS - Multiple SQL Injection Vulnerabilities
Document Title: =============== Zenbership 1.0.8 CMS - Multiple SQL Injection Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2073 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-9759 CVE-ID: ======= CVE-2017-9759 Release Date:...
Zenbership 1.0.8 CMS - Multiple SQL Injection Vulnerabilities
Document Title: =============== Zenbership 1.0.8 CMS - Multiple SQL Injection Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2073 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-9759 CVE-ID: ======= CVE-2017-9759 Release Date:...