Lucene search
K

57 matches found

OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.20 views

Debian: Security Advisory (DSA-1976-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.6AI score0.10612EPSS
Exploits0References3
NVD
NVD
added 2021/02/16 8:15 p.m.20 views

CVE-2021-20073

Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows for cross-site request forgeries...

8.8CVSS0.00458EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/02/16 7:43 p.m.21 views

CVE-2021-20073

Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows for cross-site request forgeries...

8.9AI score0.00458EPSS
Exploits0References1
Debian
Debian
added 2019/10/28 9:38 p.m.79 views

[SECURITY] [DLA 1975-1] spip security update

Package : spip Version : 3.0.17-2+deb8u5 CVE ID : CVE-2019-16391 CVE-2019-16392 CVE-2019-16393 CVE-2019-16394 It was discovered that SPIP, a website engine for publishing, would allow unauthenticated users to modify published content and write to the database, perform cross-site request forgeries...

6.5CVSS6.5AI score0.07538EPSS
Exploits2
OpenVAS
OpenVAS
added 2019/09/26 12:0 a.m.25 views

Debian: Security Advisory (DSA-4532-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.1AI score0.07538EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2019/09/26 12:0 a.m.26 views

Debian DSA-4532-1 : spip - security update

It was discovered that SPIP, a website engine for publishing, would allow unauthenticated users to modify published content and write to the database, perform cross-site request forgeries, and enumerate registered users. C Tenable Network Security, Inc. The descriptive text and package checks in...

6.5CVSS6.2AI score0.07538EPSS
Exploits2References8
Debian
Debian
added 2019/09/25 6:38 a.m.72 views

[SECURITY] [DSA 4532-1] spip security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4532-1 [email protected] https://www.debian.org/security/ Sebastien Delafond September 25, 2019 https://www.debian.org/security/faq -...

6.5CVSS6.7AI score0.07538EPSS
Exploits2
Debian
Debian
added 2019/09/25 6:38 a.m.37 views

[SECURITY] [DSA 4532-1] spip security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4532-1 [email protected] https://www.debian.org/security/ Sebastien Delafond September 25, 2019 https://www.debian.org/security/faq -...

5.8CVSS1.6AI score0.07538EPSS
Exploits2
exploitpack
exploitpack
added 2016/06/29 12:0 a.m.76 views

Symantec Endpoint Protection Manager 12.1 - Multiple Vulnerabilities

Symantec Endpoint Protection Manager 12.1 - Multiple Vulnerabilities + Credits: John Page aka HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/SYMANTEC-SEPM-MULTIPLE-VULNS.txt + ISR: ApparitionSec Vendor: ================ www.symantec.com Product:...

6CVSS0.2AI score0.04122EPSS
Exploits4
Exploit DB
Exploit DB
added 2016/06/29 12:0 a.m.55 views

Symantec Endpoint Protection Manager 12.1 - Multiple Vulnerabilities

Credits: John Page aka HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/SYMANTEC-SEPM-MULTIPLE-VULNS.txt + ISR: ApparitionSec Vendor: ================ www.symantec.com Product: =========== SEPM Symantec Endpoint Protection Manager and client v12.1...

8CVSS6.3AI score0.04122EPSS
Exploits4
0day.today
0day.today
added 2016/06/29 12:0 a.m.89 views

Symantec Endpoint Protection Manager 12.1 - Multiple Vulnerabilities

Exploit for php platform in category web applications + Credits: John Page aka HYP3RLINX + ISR: ApparitionSec Vendor: ================ www.symantec.com Product: =========== SEPM Symantec Endpoint Protection Manager and client v12.1 SEPM provides a centrally managed solution. It handles security...

6CVSS0.2AI score0.04122EPSS
Exploits4
Exploit DB
Exploit DB
added 2016/06/20 12:0 a.m.38 views

sNews CMS 1.7.1 - Multiple Vulnerabilities

Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/SNEWS-RCE-CSRF-XSS.txt + ISR: APPARITIONSEC Vendor: ============ snewscms.com Product: ================ sNews CMS v1.7.1 Vulnerability Type: =================================== Persistent...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2016/06/20 12:0 a.m.19 views

sNews CMS 1.7.1 - Multiple Vulnerabilities

sNews CMS 1.7.1 - Multiple Vulnerabilities + Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/SNEWS-RCE-CSRF-XSS.txt + ISR: APPARITIONSEC Vendor: ============ snewscms.com Product: ================ sNews CMS v1.7.1 Vulnerability Type:...

Exploits0
0day.today
0day.today
added 2016/06/20 12:0 a.m.28 views

sNews CMS 1.7.1 - Multiple Vulnerabilities

Exploit for php platform in category web applications + Credits: hyp3rlinx + ISR: APPARITIONSEC Vendor: ============ snewscms.com Product: ================ sNews CMS v1.7.1 Vulnerability Type: =================================== Persistent Remote Command Execution Cross Site Request Forgeries CSR...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/04/23 12:0 a.m.21 views

HP Network Automation Multiple Remote Vulnerabilities (HPSBMU03264)

The version of HP Network Automation running on the remote host is affected by multiple vulnerabilities in the administrative web interface. These vulnerabilities include multiple cross-site request forgeries, cross-site scripting, and clickjacking vulnerabilities. An unauthenticated, remote...

5.3AI score
Exploits0References2
Hacker One
Hacker One
added 2015/03/19 5:54 p.m.29 views

Ubiquiti Inc.: UniFi v3.2.10 Cross-Site Request Forgeries / Referer-Check Bypass

VULNERABILITY DESCRIPTION ----------- The application UniFi v3.2.10 uses JSON requests to add/edit/save/delete configuration options on the administrative web-interface, but the application has an insufficient Cross-Site Request Forgery protection in place by only checking whether the Referer...

0.1AI score
Exploits0
OpenVAS
OpenVAS
added 2013/09/13 12:0 a.m.38 views

Debian Security Advisory DSA 2753-1 (mediawiki - information leak)

It was discovered that in Mediawiki, a wiki engine, several API modules allowed anti-CSRF tokens to be accessed via JSONP. These tokens protect against cross site request forgeries and are confidential. OpenVAS Vulnerability Test $Id: deb2753.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generat...

5CVSS0.1AI score0.01992EPSS
Exploits0References1
w3af
w3af
added 2013/06/10 11:2 p.m.93 views

csrf

This plugin finds Cross Site Request Forgeries csrf vulnerabilities. The simplest type of csrf is checked to be vulnerable, the web application must have sent a permanent cookie, and the aplicacion must have query string parameters. Plugin type Audit Options This plugin doesnt have any user...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2011/08/12 12:0 a.m.40 views

Ubuntu: Security Advisory (USN-1182-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS5.4AI score0.10046EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2011/01/26 12:0 a.m.38 views

FreeBSD : bugzilla -- multiple serious vulnerabilities (c8c927e5-2891-11e0-8f26-00151735203a)

A Bugzilla Security Advisory reports : This advisory covers three security issues that have recently been fixed in the Bugzilla code : - A weakness in Bugzilla could allow a user to gain unauthorized access to another Bugzilla account. - A weakness in the Perl CGI.pm module allows injecting HTTP...

9.3CVSS8.1AI score0.0504EPSS
Exploits0References20
Rows per page
Query Builder