Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2025/06/10 12:0 a.m.4 views

SAP GRC 安全漏洞

SAP GRC is a suite of solutions and products from SAP, Germany. can help you manage enterprise resources in a way that minimizes risk, builds trust, and reduces compliance costs. A security vulnerability exists in SAP GRC that stems from improper authorization and could result in modification or...

8.8CVSS6.6AI score0.00336EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/05/22 9:55 a.m.4 views

CVE-2011-5298

Multiple cross-site request forgery CSRF vulnerabilities in Argyle Social 2011-04-26 allow remote attackers to hijack the authentication of administrators for requests that 1 modify credentials via the role parameter to users/create/, 2 modify rules via the terms field in streamfilterrule JSON da...

6.8CVSS7.7AI score0.00609EPSS
Exploits1References1
Exploit DB
Exploit DBadded 2023/04/06 12:0 a.m.294 views

Osprey Pump Controller 1.0.1 - Authentication Bypass Credentials Modification

!/usr/bin/env python Exploit Title: Osprey Pump Controller v1.0.1 - Authentication Bypass Credentials Modification Exploit Author: LiquidWorm Vendor: ProPump and Controls, Inc. Product web page: https://www.propumpservice.com | https://www.pumpstationparts.com Affected version: Software Build ID...

7AI score
Exploits0
BDU FSTEC
BDU FSTECadded 2022/07/13 12:0 a.m.6 views

The vulnerability of the SEPCOS Single Package control and protection relay software allows a intruder to modify user credentials and permissions without authentication.

The vulnerability of the SEPCOS Single Package control and protection relay software is related to the improper implementation of the sequence of actions to be performed. Exploiting this vulnerability allows a malicious actor to modify user credentials and permissions without authentication...

9.7CVSS7.7AI score0.01004EPSS
Exploits0References5Affected Software1
Prion
Prionadded 2015/01/01 11:59 a.m.10 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in diafan.CMS before 5.1 allow remote attackers to hijack the authentication of administrators for requests that 1 modify articles via a savepost action to admin/news/saveNEWSID/, 2 modify settings via a savepost action to admin/site/save2/...

6.8CVSS7.8AI score0.0106EPSS
Exploits1References1Affected Software1
htbridge
htbridgeadded 2011/01/13 12:0 a.m.32 views

Cross-site Request Forgery (CSRF) in KaiBB

High-Tech Bridge SA Security Research Lab has discovered vulnerability in KaiBB which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in KaiBB The vulnerability exists due to insufficient validation of the request origin in admin/core/account.ph...

5.1CVSS6.7AI score
Exploits0Affected Software1
Exploit DB
Exploit DBadded 2010/05/17 12:0 a.m.25 views

Abyss Web Server X1 - Cross-Site Request Forgery

http://osvdb.org/show/osvdb/64693 http://cross-site-scripting.blogspot.com/2010/05/abyss-web-server-x1-xsrf.html : Abyss Web Server X1 XSRF A cross-site request forgery vunlerability in the Abyss Web Server X1 management console can be exploited to change both the username and password of the...

7AI score
Exploits0
Rows per page
Query Builder