21 matches found
EUVD-2026-32896
The Mennekes Amtron series firmware versions ≤ 5.22.3 is vulnerable to an authentication bypass. An unauthenticated remote attacker can change the password of the user account via a crafted POST request to the /operator/operator endpoint...
SUSE CVE-2022-3930
The Directorist WordPress plugin before 7.4.2.2 suffers from an IDOR vulnerability which an attacker can exploit to change the password of arbitrary users instead of his own...
ManageEngine Desktop Central 权限许可和访问控制问题漏洞
ZOHO ManageEngine Desktop Central DC is a desktop management solution from ZOHO. The solution includes software distribution, patch management, system configuration, remote control and other functional modules to support the entire lifecycle of desktop and server management. A privilege permissio...
CVE-2021-33723
A vulnerability has been identified in SINEC NMS All versions V1.0 SP2 Update 1. An authenticated attacker could change the user profile of any user without proper authorization. With this, the attacker could change the password of any user in the affected system...
Vesta Control Panel Elevation of Privilege Vulnerability
Vesta Control Panel VestaCP is an open source web hosting control panel. A security vulnerability exists in Vesta Control Panel 0.9.8-26 and earlier versions. The vulnerability can be exploited by an attacker to gain root privileges on the system with the help of v-change-user-password user...
CVE-2020-10787
An elevation of privilege in Vesta Control Panel through 0.9.8-26 allows an attacker to gain root system access from the admin account via v-change-user-password aka the user password change script...
MythPhp CSRF Change User Password Vulnerability
Exploit for php platform in category web applications Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail : submitat1337day.com 1 0 0 1 1 0 I'm Caddy-dz member from Inj3ct0r Team 1 1 0...
Campsite CMS 3.4.0 Cross Site Request Forgery
Date: Mon 12 Jul 2010 03:40:46 PM EEST Vendor: http://www.sourcefabric.org/en/home/web/6/Campsite.htm?tpl=18 Download: http://sourceforge.net/projects/campsite/files/campsite/3.4.0/campsite-3.4.0.tar.gz/download --- -= CSRF PoC 1 - Create Admin User =- Campsite CMS 3.4.0 Multiple CSRF...
FubarForum 1.6 Admin Bypass Change User Password Vulnerability
No description provided by source. ..:: R31P0lathotmail.com ::.. Tanx from : str0ke Script : FubarForum Version : 1.6 Dork : "Powered by FubarForum v1.6" /forum/index.php?page=profile&userid=1 Greetz to: Corenamed, Unsecured, Esedark, pax0r, zrallter, th0r... and TerminalHacker...
[DSECRG-08-030] Claroline 1.8.9 Multiple Security Vulnerabilities
Digital Security Research Group DSecRG Advisory DSECRG-08-030 Application: Claroline eLearning and eWorking platform Versions Affected: 1.8.9 Vendor URL: http://www.claroline.net/ Bug: Multiple XSS, Phishing Through URL Redirection, Change User Password XSRF Vulnerability Exploits: YES Reported:...
Blogator-script 0.95 - Change User Password
Blogator-script 0.95 - Change User Password ...:::::Blogator-script 0.95 Change User Password Vulnerbility ::::.... Virangar Security Team www.virangar.org www.virangar.net -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar...
Blogator-script 0.95 Change User Password Vulnerability
Exploit for unknown platform in category web applications ======================================================= Blogator-script 0.95 Change User Password Vulnerability ======================================================= ...:::::Blogator-script 0.95 Change User Password Vulnerbility ::::...
Blogator-script 0.95 Change User Password Vulnerbility
...:::::Blogator-script 0.95 Change User Password Vulnerbility ::::.... Virangar Security Team www.virangar.org www.virangar.net -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz greetz:to my best frie...
Blogator-script 0.95 - Change User Password
...:::::Blogator-script 0.95 Change User Password Vulnerbility ::::.... Virangar Security Team www.virangar.org www.virangar.net -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz greetz:to my best frie...
DSECRG-08-013.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-013 Application: MODx CMS Versions Affected: 0.9.6.1, 0.9.6.1p1 Vendor URL: http://modxcms.com/ Bugs: XSS, SiXSS, stored XSS, Change User Password XSRF Vulnerability. Exploits: YES Reported: 11.01.2008 Vendor response: 11.01.2008 Updated...
[DSECRG-08-013] Modx 0.9.6.1, 0.9.6.1p1 Multiple Security Vulnerabilities
Digital Security Research Group DSecRG Advisory DSECRG-08-013 Application: MODx CMS Versions Affected: 0.9.6.1, 0.9.6.1p1 Vendor URL: http://modxcms.com/ Bugs: XSS, SiXSS, stored XSS, Change User Password XSRF Vulnerability. Exploits: YES Reported: 11.01.2008 Vendor response: 11.01.2008 Updated...
Seditio 1.10 - avatarselect id SQL Injection
Seditio http://www.victim.com/users.php?m=profile&a=avatarselect&x=XVALUE&id=default.gifSQL Inject GET - http://www.victim.com/users.php?m=profile&a=avatarselect&x=011A99&id=default.gif%2500%2527,userpassword=%2527e10adc3949ba59abbe56e057f20f883e%2527//where//userid=1/ with this example remote...
iPrimal Forums (admin/index.php) Change User Password Exploit
No description provided by source. !perl http://ipigroup.org/downloads/forums.zip Bl0od3r Germany shoutzz to all members of dC3 crew ,matrixkiller,eddie14 special to str0ke use IO::Socket; if @ARGV4 else &start ; sub start $host=$ARGV0; $path=$ARGV1; $user=$ARGV2; $passwd=$ARGV3;...
iPrimal Forums - adminindex.php Change User Password
iPrimal Forums - adminindex.php Change User Password !perl http://ipigroup.org/downloads/forums.zip Bl0od3r Germany shoutzz to all members of dC3 crew ,matrixkiller,eddie14 special to str0ke use IO::Socket; if @ARGVnewProto="tcp",PeerAddr="$host",PeerPort="80" or die "Error"; print $sock "POST...
iPrimal Forums (admin/index.php) Change User Password Exploit
Exploit for unknown platform in category web applications ============================================================= iPrimal Forums admin/index.php Change User Password Exploit ============================================================= !perl Bl0od3r Germany shoutzz to all members of dC3 cre...