Lucene search
K

4 matches found

NVD
NVD
added 2026/03/16 2:17 p.m.4 views

CVE-2016-20034

Wowza Streaming Engine 4.5.0 contains a privilege escalation vulnerability that allows authenticated read-only users to elevate privileges to administrator by manipulating POST parameters. Attackers can send POST requests to the user edit endpoint with accessLevel set to 'admin' and advUser...

8.8CVSS0.00209EPSS
Exploits2References3
Cvelist
Cvelist
added 2026/03/15 6:34 p.m.35 views

CVE-2016-20034 Wowza Streaming Engine 4.5.0 Privilege Escalation via user edit

Wowza Streaming Engine 4.5.0 contains a privilege escalation vulnerability that allows authenticated read-only users to elevate privileges to administrator by manipulating POST parameters. Attackers can send POST requests to the user edit endpoint with accessLevel set to 'admin' and advUser...

8.8CVSS0.00209EPSS
Exploits2References3
OSV
OSV
added 2024/07/22 3:30 a.m.5 views

MAL-2024-7790 Malicious code in sap-accesslevel (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5a9eef95084b4052715fcbefc82b3ebb9680371d43f189ca1d39bb75af3c2a9f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
0day.today
0day.today
added 2008/03/19 12:0 a.m.333 views

ASPapp (links.asp CatId) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications =========================================================== ASPapp links.asp CatId Remote SQL Injection Vulnerability =========================================================== ....... ...... ..... .....CoRPITX...

7.1AI score
Exploits0
Rows per page
Query Builder