Lucene search
K

6 matches found

Prion
Prion
added 2016/04/08 2:59 p.m.21 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the Mail interface in Zimbra Collaboration Server ZCS before 8.5 allow remote attackers to hijack the authentication of arbitrary users for requests that change account preferences via a SOAP request to service/soap/BatchRequest...

6.8CVSS7.8AI score0.02989EPSS
Exploits5References3Affected Software1
CNVD
CNVD
added 2016/03/18 12:0 a.m.2 views

Websitebaker SQL Injection Vulnerability (CNVD-2016-01767)

websitebaker is an open source content management system CMS. Websitebaker suffers from a SQL injection vulnerability. Due to the failure of the PHP script to filter user-supplied data via the "language" HTTP POST parameter passed to "/account/preferences.php", a remotely authenticated attacker...

8.4AI score
Exploits0References1
exploitpack
exploitpack
added 2016/02/26 12:0 a.m.20 views

Zimbra 8.0.9 GA - Cross-Site Request Forgery

Zimbra 8.0.9 GA - Cross-Site Request Forgery ====================================== Multiple CSRF in Zimbra Mail interface ====================================== CVE-2015-6541 Description =========== Multiple CSRF vulnerabilities have been found in the Mail interface of Zimbra 8.0.9 GA Release,...

6.8CVSS0.6AI score0.02989EPSS
Exploits5
0day.today
0day.today
added 2016/02/26 12:0 a.m.62 views

Zimbra 8.0.9 GA - Cross-Site Request Forgery

Exploit for linux platform in category web applications ====================================== Multiple CSRF in Zimbra Mail interface ====================================== CVE-2015-6541 Description =========== Multiple CSRF vulnerabilities have been found in the Mail interface of Zimbra 8.0.9 GA...

6.8CVSS8.9AI score0.02989EPSS
Exploits5
Exploit DB
Exploit DB
added 2016/02/26 12:0 a.m.106 views

Zimbra 8.0.9 GA - Cross-Site Request Forgery

====================================== Multiple CSRF in Zimbra Mail interface ====================================== CVE-2015-6541 Description =========== Multiple CSRF vulnerabilities have been found in the Mail interface of Zimbra 8.0.9 GA Release, enabling to change account preferences like...

8.8CVSS8.8AI score0.02989EPSS
Exploits5
Cvelist
Cvelist
added 2012/02/20 7:0 p.m.22 views

CVE-2012-1000

Multiple cross-site scripting XSS vulnerabilities in LEPTON 1.1.3 and other versions before 1.1.4 allow remote attackers to inject arbitrary web script or HTML via the 1 message parameter to admins/login/forgot/index.php, or the 2 displayname or 3 email parameter to account/preferences.php...

5.7AI score0.01193EPSS
Exploits3References3
Rows per page
Query Builder