10 matches found
EUVD-2022-28826
Malicious code in bioql PyPI...
CVE-2022-23904
Rainworx Auctionworx 3.1R2 is vulnerable to a Cross-Site Request Forgery CSRF attack that allows an authenticated user to upgrade his account to admin and gain access to the auctionworx admin control panel. This vulnerability affects AuctionWorx Enterprise and AuctionWorx: Events Edition...
CVE-2022-23904
Rainworx Auctionworx 3.1R2 is vulnerable to a Cross-Site Request Forgery CSRF attack that allows an authenticated user to upgrade his account to admin and gain access to the auctionworx admin control panel. This vulnerability affects AuctionWorx Enterprise and AuctionWorx: Events Edition...
CVE-2022-23904
Rainworx Auctionworx 3.1R2 is vulnerable to a Cross-Site Request Forgery CSRF attack that allows an authenticated user to upgrade his account to admin and gain access to the auctionworx admin control panel. This vulnerability affects AuctionWorx Enterprise and AuctionWorx: Events Edition...
CVE-2022-23904
Rainworx Auctionworx 3.1R2 is vulnerable to a Cross-Site Request Forgery CSRF attack that allows an authenticated user to upgrade his account to admin and gain access to the auctionworx admin control panel. This vulnerability affects AuctionWorx Enterprise and AuctionWorx: Events Edition...
Cross site request forgery (csrf)
Rainworx Auctionworx 3.1R2 is vulnerable to a Cross-Site Request Forgery CSRF attack that allows an authenticated user to upgrade his account to admin and gain access to the auctionworx admin control panel. This vulnerability affects AuctionWorx Enterprise and AuctionWorx: Events Edition...
CVE-2022-23904
Rainworx Auctionworx 3.1R2 is vulnerable to a Cross-Site Request Forgery CSRF attack that allows an authenticated user to upgrade his account to admin and gain access to the auctionworx admin control panel. This vulnerability affects AuctionWorx Enterprise and AuctionWorx: Events Edition...
CVE-2022-23904
The CVE-2022-23904 entry describes a CSRF vulnerability in Rainworx Auctionworx prior to 3.1R2. Affected product version(s) allow an authenticated user to upgrade their own account to admin, enabling access to the Auctionworx admin control panel (Enterprise and Events Edition). Root cause is CSRF...
Rainworx Auctionworx 跨站请求伪造漏洞
Rainworx Auctionworx is an online auction software. A security vulnerability previously existed in Rainworx Auctionworx version 3.1R2 that allowed authenticated users to upgrade their account to administrator and gain access to the Auctionworx administrator control panel, resulting in a cross-sit...
AuctionWorx Enterprise v1.1 Multiple CSRF Vulnerability
Exploit for php platform in category web applications AuctionWorx Enterprise v1.1 Multiple CSRF Vulnerability ==================================================================== .:. Author : AtT4CKxT3rR0r1ST email protected .:. Script : http://www.rainworx.com/AuctionWorx .:. Tested On Demo :...