Lucene search
K

27 matches found

prion
prion
added 2022/02/09 11:15 p.m.20 views

Authentication flaw

A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that could allow an attacker to manipulate the admin after numerous attempts at guessing credentials. Affected Product: spaceLYnk V2.6.2 and prior, Wiser for KNX formerly homeLYnk V2.6.2 and prior, fellerLYn...

5CVSS9.4AI score0.01091EPSS
Exploits0References1Affected Software3
ptsecurity
ptsecurity
added 2021/07/06 12:0 a.m.13 views

PT-2021-15921 · WordPress · Vikrentcar Car Rental Management System

Name of the Vulnerable Software and Affected Versions: VikRentCar Car Rental Management System WordPress plugin versions prior to 1.1.7 Description: The issue is related to a stored Cross-Site Scripting problem. It arises because the field name in the custom field option is not properly sanitised...

5.4CVSS5.3AI score0.00319EPSS
Exploits2References5
wpvulndb
wpvulndb
added 2020/05/25 12:0 a.m.16 views

Official MailerLite Sign Up Forms < 1.4.5 - Multiple CSRF Issues

Despite fixing the SQL injection, the plugin was still affected by CSRF issues, which could allow an attacker to make a logged in administrator edit, add, and delete arbitrary signup form views...

3.7AI score
Exploits0References1Affected Software1
openvas
openvas
added 2017/07/19 12:0 a.m.23 views

ownCloud Multiple Vulnerabilities (May 2017)

ownCloud is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:owncloud:owncloud"; if description...

6.5CVSS5.6AI score0.01036EPSS
Exploits1References2
owncloud
owncloud
added 2017/05/31 10:39 a.m.559 views

Server: Normal user can somehow make admin to delete shared folders

A Attacker is logged in as a normal user and can somehow make admin to delete shared folders For more information please consult the official advisory. This advisory is licensed CC BY-SA 4.0...

4CVSS6.1AI score0.00998EPSS
Exploits1Affected Software1
exploitdb
exploitdb
added 2012/08/28 12:0 a.m.27 views

RV Article Publisher - Cross-Site Request Forgery

Exploit Title: RV Article publisher CSRF Vulnerability Date: 26/08/2012 Author: DaOne @LibyanCA Vendor: http://www.scripts4webmasters.com Greetings to LCA CSRF Add Admin...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2012/04/03 12:0 a.m.26 views

Simple PHP Agenda 2.2.8 - Cross-Site Request Forgery (Add Admin / Add Event)

+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Simple PHP Agenda = 2.2.8 CSRF Add Admin - Add Event Date : 29-03-2012 Author : Ivano Binetti http://ivanobinetti.com Software link :...

6.8CVSS7AI score0.02284EPSS
Exploits6
Rows per page
Query Builder