Lucene search
K

37 matches found

Github Security Blog
Github Security Blog
added 2022/05/24 7:7 p.m.18 views

ThinkCMF Cross Site Request Forgerly (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability in ThinkCMF, which can add an admin account...

6.5CVSS7AI score0.00473EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2019/03/11 4:0 p.m.14 views

CVE-2019-9688

sftnow through 2018-12-29 allows index.php?g=Admin&m=User&a=addpost CSRF to add an admin account...

8.7AI score0.0065EPSS
Exploits1References1
CNVD
CNVD
added 2018/07/25 12:0 a.m.3 views

BageCMS Cross-Site Request Forgery Vulnerability

BageCMS is a cross-platform content management system CMS based on PHP and MySQL. A cross-site request forgery vulnerability exists in the index.php?r=admini/admin/create URL in BageCMS version 3.1.3. A remote attacker can exploit the vulnerability to add a backend administrator account...

8.8CVSS8.8AI score0.00523EPSS
Exploits1References1
Prion
Prion
added 2017/06/15 6:29 p.m.10 views

Cross site request forgery (csrf)

In SimpleCE 2.3.0, a CSRF vulnerability can be exploited to add an administrator account via the index.php/user/new URI or change its settings via the index.php/user/1 URI, including its password...

6.8CVSS7.1AI score0.00751EPSS
Exploits1References1Affected Software1
seebug.org
seebug.org
added 2014/11/13 12:0 a.m.27 views

Who's Who Script - CSRF Exploit (Add Admin Account)

No description provided by source. Title : Who's Who Script CSRF Exploit Add Admin Account Author : ZoRLu / [email protected] / [email protected] Home : http://milw00rm.com / its online Date : 30.10.2014 Demo : http://demo.phpscriptlerim.com/free/whoswho/ Download1 :...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2014/10/31 12:0 a.m.13 views

Whos Who Script - Cross-Site Request Forgery (Add Admin)

Whos Who Script - Cross-Site Request Forgery Add Admin Title : Who's Who Script CSRF Exploit Add Admin Account Author : ZoRLu / [email protected] / [email protected] Home : http://milw00rm.com / its online Date : 30.10.2014 Demo : http://demo.phpscriptlerim.com/free/whoswho/ Download1 :...

0.3AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

SocialCMS 1.0.2 - CSRF Vulnerability

No description provided by source. +-------------------------------------------------------------------------+ Exploit Title : Socialcms CSRF Vulnerability Date : 16-02-2012 Author : Ivano Binetti http://ivanobinetti.com Vendor site : http://socialcms.com Software link :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Traidnt UP - Cross-Site Request Forgery Add Admin Account

No description provided by source. Exploit Title: Traidnt UP - CSRF Add Admin Account Date: 24-09-2010 Author: G0D-F4Th3r Software Link: http://www.traidnt.net Software Download: http://traidntup.googlecode.com/files/Traidnt%20up%20V3.0.zip Version: 3.0 Exploit html body onload=javascript:fireFor...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

Flyspray 0.9.9.6 CSRF Vulnerability

No description provided by source. Exploit Title: Flyspray 0.9.9.6 CSRF Vulnerability Date: 06 Feb 2012 Author: Vaibhav Gupta Software Link: http://flyspray.org/flyspray-0.9.9.6.zip Version: 0.9.9.6 +---+CSRF Add Admin Account after authentication+---+ html body...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

viart shop 4.0.5 - CSRF Vulnerability

No description provided by source. +-------------------------------------------------------------------------+ Software : viart shop 4.0.5 Author : Or4nG.M4N Date : n/a Dork : inurl:powered by viart shop 4.0.5 Software Link : http://www.viart.com/...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.29 views

VR GPub 4.0 CSRF Vulnerability

No description provided by source. +-------------------------------------------------------------------------+ Exploit Title : VR GPub 4.0 CSRF Vulnerability version : VR GPub 4.0 Author : Cyber-Crystal Date : n/a Dork : inurl:VR GPub Software Link :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

win32/xp sp3 (Tr) Add Admin Account Shellcode 127 bytes

No description provided by source. Title : win32/xp sp3 Tr Add Admin Account Shellcode 127 bytes Proof : http://img823.imageshack.us/img823/1017/addqx.jpg Desc. : usr: zrl , pass: 123456 , localgroup: Administrator Author : ZoRLu / http://inj3ct0r.com/author/577 mail-msn :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

Allomani Songs & Clips Script 2.7.0 - [CSRF] Add Admin Account

No description provided by source. Exploit Title: Allomani & Clips v2.7.0 - CSRF Add Admin Account Date:25 -06-2010 Author: G0D-F4Th3rG0D-F4Th3r Software Link: http://allomani.com html body onload=javascript:fireForms form method=POST name=form0 action= http://www.site.com/path/admin/index.php...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2013/08/02 12:0 a.m.29 views

Rite CMS 1.0.0 Cross Site Request Forgery / Cross Site Scripting

Exploit Title: RiteCMS multiple vulnerabilities Date: 2013 30 July Exploit Author: Yashar shahinzadeh Credit goes for: ha.cker.ir Vendor Homepage: http://ritecms.com/ Tested on: Linux & Windows, PHP 5.2.9 Affected Version : 1.0.0 Contacts: http://Twitter.com/YShahinzadeh , http://y-shahinzadeh.ir...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2012/08/18 12:0 a.m.24 views

ClipBucket 2.5 Cross Site Request Forgery

Exploit Title: ClipBucket 2.5 CSRF Vulnerability Author: DaOne LCA Date: 15/8/2012 Software Link: http://clip-bucket.com/ Or: http://sourceforge.net/projects/clipbucket/ CSRF Add Admin thanks to : Ly.Lolsec...

0.7AI score
Exploits0
myhack58
myhack58
added 2012/02/21 12:0 a.m.14 views

SyndeoCMS <= 3.0 CSRF flaws and fixes-vulnerability warning-the black bar safety net

Title: SyndeoCMS = 3.0 CSRF Vulnerability Author: Ivano Binetti http://ivanobinetti.com Program development website: http://www.syndeocms.org/ Download address: http://sourceforge.net/projects/syndeocms Affected version: 3.0 and below Test System Platform: Debian Squeeze 6.0 +--------------+Add...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2012/02/19 12:0 a.m.27 views

SyndeoCMS 3.0 Cross Site Request Forgery

+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : SyndeoCMS I'm adding ADMIN account form method="POST" name="form0" action="http://127.0.0.1:80/syndeocms/starnet/index.p...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2012/02/19 12:0 a.m.22 views

SyndeoCMS 3.0 - Cross-Site Request Forgery

+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : SyndeoCMS I'm adding ADMIN account input type="hidden" name="access3...

7.4AI score
Exploits0
0day.today
0day.today
added 2012/02/18 12:0 a.m.15 views

SyndeoCMS <= 3.0 CSRF Vulnerability

Exploit for php platform in category web applications +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : SyndeoCMS I'm adding ADMIN account input type="hidden" name="access13"...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2012/02/16 12:0 a.m.11 views

SocialCMS 1.0.2 - Cross-Site Request Forgery

SocialCMS 1.0.2 - Cross-Site Request Forgery +-------------------------------------------------------------------------+ Exploit Title : Socialcms CSRF Vulnerability Date : 16-02-2012 Author : Ivano Binetti http://ivanobinetti.com Vendor site : http://socialcms.com Software link :...

0.7AI score
Exploits0
Rows per page
Query Builder