50 matches found
CVE-2018-10185
An issue was discovered in TuziCMS v2.0.6. There is a CSRF vulnerability that can add an admin account, as demonstrated by a history.pushState call...
EUVD-2020-10381
Malware in sbrugna...
EUVD-2020-13916
Malware in sbrugna...
EUVD-2019-17266
Malware in sbrugna...
EUVD-2018-2299
Malware in sbrugna...
EUVD-2018-5945
Malware in sbrugna...
EUVD-2018-3529
Malware in sbrugna...
EUVD-2018-21518
Malware in sbrugna...
CVE-2023-43278
A Cross-Site Request Forgery CSRF in adminmanager.php of Seacms up to v12.8 allows attackers to arbitrarily add an admin account...
CVE-2022-41475
RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily add an administrator account...
CVE-2021-29334
An issue was discovered in JIZHI CMS 1.9.4. There is a CSRF vulnerability that can add an admin account via index, /admin.php/Admin/adminadd.html...
CVE-2020-18458
Cross Site Request Forgery CSRF vulnerability exists in DamiCMS v6.0.6 that can add an admin account via admin.php?s=/Admin/doadd...
CVE-2020-18457
Cross Site Request Forgery CSRF vulnerability exists in bycms v1.3.0 that can add an admin account via admin.php/ucenter/add.html...
CVE-2020-18460
Cross Site Request Forgery CSRF vulnerability exists in 711cms v1.0.7 that can add an admin account via admin.php?c=Admin=content...
CVE-2023-43278
A Cross-Site Request Forgery CSRF in adminmanager.php of Seacms up to v12.8 allows attackers to arbitrarily add an admin account...
CVE-2023-43278
A Cross-Site Request Forgery CSRF in adminmanager.php of Seacms up to v12.8 allows attackers to arbitrarily add an admin account...
CVE-2023-35078
An authentication bypass vulnerability in Ivanti EPMM allows unauthorized users to access restricted functionality or resources of the application without proper authentication. Recent assessments: cbeek-r7 at July 26, 2024 7:47pm UTC reported: A July 2024 bulletin from multiple U.S. government...
CVE-2021-29334
An issue was discovered in JIZHI CMS 1.9.4. There is a CSRF vulnerability that can add an admin account via index, /admin.php/Admin/adminadd.html...
CVE-2022-26173
JForum v2.8.0 was discovered to contain a Cross-Site Request Forgery CSRF via http://targethost:port/jforum-2.8.0/jforum.page, which allows attackers to arbitrarily add admin accounts...
CVE-2020-20945
A Cross-Site Request Forgery CSRF in /admin/index.php?lfj=member&action=editmember of Qibosoft v7 allows attackers to arbitrarily add administrator accounts...