14 matches found
PT-2026-7880
Wondershare MobileGo 8.5.0 contains an insecure file permissions vulnerability that allows local users to modify executable files in the application directory. Attackers can replace the original MobileGo.exe with a malicious executable to create a new user account and add it to the Administrators...
CVE-2020-37160 SprintWork 2.3.1 - Local Privilege Escalation
SprintWork 2.3.1 contains multiple local privilege escalation vulnerabilities through insecure file, service, and folder permissions on Windows systems. Local unprivileged users can exploit missing executable files and weak service configurations to create a new administrative user and gain...
PT-2024-39120 · Learning Digital · Orca Hcm
Name of the Vulnerable Software and Affected Versions: Orca HCM from LEARNING DIGITAL affected versions not specified Description: The issue is related to a missing authentication vulnerability, allowing an unauthenticated remote attacker to exploit the functionality and create an account with...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in ATutor 2.2 allow remote attackers to hijack the authentication of administrators for requests that 1 create an administrator account via a request to mods/core/users/admins/create.php or 2 create a user account via a request to...
BPTutors Tutoring site script - [ CSRF ] Create Administrator Account
No description provided by source. Title: BPTutors Tutoring site script - CSRF Create Administrator Account Date: 26/3/2010 Author: bi0 Software: http://bpowerhouse.info/tutoring-site-script.htm Version: 1.0 Code : /\ == \ /\ \ /\ \ \ \ \ \ \ \ \ /\ \ \ \ \ \ \ \ // // // 01000010 01101001...
68kb 68KB Base 1.0.0rc3 - Cross-Site Request Forgery (Admin)
68kb 68KB Base 1.0.0rc3 - Cross-Site Request Forgery Admin Exploit Title: 68kb Knowledge Base v1.0.0rc3 create administrator account CSRF Date: 2010-04-02 Author: Jelmer de Hen Software Link: http://68kb.googlecode.com/files/68kb-v1.0.0rc3.zip Version: v1.0.0rc3 /index.php/admin/users/add" Exampl...
BPTutors Tutoring Site Script XSRF
Title: BPTutors Tutoring site script - CSRF Create Administrator Account Date: 26/3/2010 Author: bi0 Software: http://bpowerhouse.info/tutoring-site-script.htm Version: 1.0 Code : /\ == \ /\ \ /\ \ \ \ Admin 6+ Passwd 6+ Frist Name Last Name Email a class='classa'...
Easy Banner Pro Cross Site Request Forgery
/\ == \ /\ \ /\ \ \ \ inp...
AdManagerPro - Cross-Site Request Forgery (Add Admin)
AdManagerPro - Cross-Site Request Forgery Add Admin /\ == \ /\ \ /\ \ \ \ input type="...
AdManagerPro CSRF Create Administrator Account
Exploit for unknown platform in category web applications ============================================== AdManagerPro CSRF Create Administrator Account ============================================== view source print? /\ == \ /\ \ /\ \ \ ...
Easy Banner Pro - Cross-Site Request Forgery (Add Admin)
Easy Banner Pro - Cross-Site Request Forgery Add Admin Title: Easy Banner Pro - CSRF Create Administrator Account Date: 14/12/2009 Author: bi0 Software Link: http://scripts-gate.com/4/easy-banner-pro-banner-exchange-script.html CVE : /\ == \ /\ \ /\ \ \ \ in...
Text Exchange Pro - Cross-Site Request Forgery (Add Admin)
Title: Text Exchange Pro - CSRF Create Administrator Account Date: 14/12/2009 Author: bi0 Software Link: http://scripts-gate.com/1/textexchangescript.html CVE : /\ == \ /\ \ /\ \ \ \ input type="hidden" name="rights...
Link Up Gold - Cross-Site Request Forgery (Add Admin)
/\ == \ /\ \ /\ \ \ \ input type="hidden" name="...
Easy Banner Pro - Cross-Site Request Forgery (Add Admin)
Title: Easy Banner Pro - CSRF Create Administrator Account Date: 14/12/2009 Author: bi0 Software Link: http://scripts-gate.com/4/easy-banner-pro-banner-exchange-script.html CVE : /\ == \ /\ \ /\ \ \ \ input type="hidden...