EUVD-2002-2403

Malware in sbrugna...

EUVD-2023-40563

Malicious code in bioql PyPI...

CVE-2002-2425

Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as 1 AdminViewError and 2 AdminAddadmin via a direct request...

CVE-2023-36619

Atos Unify OpenScape Session Border Controller through V10 R3.01.03 allows execution of administrative scripts by unauthenticated users...

PrinterLogic Build 1.0.757 XSS / SQL Injection / Authentication Bypass

PrinterLogic SaaS, multiple vulnerabilities =========================================================== PrinterLogic's Enterprise Print Management software allows IT professionals to simplify printer driver management and empower end users. -- https://www.printerlogic.com/ Background...

CVE-2018-10702

An issue was discovered on Moxa AWK-3121 1.14 devices. It provides functionality so that an administrator can run scripts on the device to troubleshoot any issues. However, the same functionality allows an attacker to execute commands on the device. The POST parameter "iwfilename" is susceptible ...

Progress 3.1 Webspeed _CPYFile.P Unauthorized Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23634/info Progress WebSpeed is prone to a vulnerability that lets attackers gain unauthorized access to and execute administrative scripts. An attacker may leverage this issue to create and execute malicious WebSpeed cod...

The Campus Request Repairs System 1.2 - 'sentout.asp' Unauthorized Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/29376/info The Campus Request Repairs System is prone to an unauthorized-access vulnerability because it fails to adequately limit access to administrative scripts used for creating accounts. An attacker can exploit this...

SaveWebPortal 3.4 Unauthorized Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14639/info SaveWebPortal is prone to an unauthorized access vulnerability. This issue is due to a failure in the application to limit access to administrative scripts. An attacker may leverage this issue to execute...

Sun AnswerBook2 1.x Unauthorized Administrative Script Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5383/info Sun Microsystems AnswerBook2 allows users to view Sun documentation through a web browser, and is available for Solaris. AnswerBook2 includes an administrative web interface. Reportedly, it is possible to access...

Benja CMS 0.1 /admin/admin_edit_topmenu.php URL XSS

No description provided by source. source: http://www.securityfocus.com/bid/29884/info The 'benja CMS' program is prone to multiple vulnerabilities because it fails to adequately validate input and restrict access. These issues include three cross-site scripting issues, an arbitrary-file-upload...

Phorum 3.x Arbitrary File Read Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1997/info Phorum is a PHP based web forums package. Due to an error in the handling of user input in administrative scripts, any user can view the any file readable by the webserver on the target host. This is due to...

Design/Logic Flaw

Multiple unspecified vulnerabilities in the Control Center in Symantec Brightmail Gateway Appliance before 8.0.1 allow remote authenticated users to gain privileges, and possibly obtain sensitive information or hijack sessions of arbitrary users, via vectors involving 1 administrative scripts or ...

Benja CMS 0.1 - adminadmin_new_submenu.php Cross-Site Scripting

Benja CMS 0.1 - adminadminnewsubmenu.php Cross-Site Scripting source: https://www.securityfocus.com/bid/29884/info The 'benja CMS' program is prone to multiple vulnerabilities because it fails to adequately validate input and restrict access. These issues include three cross-site scripting issues...

The Campus Request Repairs System 1.2 - 'sentout.asp' Unauthorized Access

source: https://www.securityfocus.com/bid/29376/info The Campus Request Repairs System is prone to an unauthorized-access vulnerability because it fails to adequately limit access to administrative scripts used for creating accounts. An attacker can exploit this vulnerability to gain unauthorized...

The Campus Request Repairs System 1.2 - sentout.asp Unauthorized Access

The Campus Request Repairs System 1.2 - sentout.asp Unauthorized Access source: https://www.securityfocus.com/bid/29376/info The Campus Request Repairs System is prone to an unauthorized-access vulnerability because it fails to adequately limit access to administrative scripts used for creating...

Directory traversal

index.php in Domenico Mancini PicoFlat CMS before 0.4.18 allows remote attackers to include certain files via unspecified vectors, possibly due to a directory traversal vulnerability. NOTE: this can be leveraged to bypass authentication and upload files by including picoinsert.php or unspecified...

CVE-2002-2425

Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as 1 AdminViewError and 2 AdminAddadmin via a direct request...

SaveWebPortal 3.4 - Unauthorized Access

source: https://www.securityfocus.com/bid/14639/info SaveWebPortal is prone to an unauthorized access vulnerability. This issue is due to a failure in the application to limit access to administrative scripts. An attacker may leverage this issue to execute arbitrary server-side script code on an...

SaveWebPortal 3.4 - Unauthorized Access

SaveWebPortal 3.4 - Unauthorized Access source: https://www.securityfocus.com/bid/14639/info SaveWebPortal is prone to an unauthorized access vulnerability. This issue is due to a failure in the application to limit access to administrative scripts. An attacker may leverage this issue to execute...