Lucene search
K

7 matches found

Prion
Prion
added 2024/01/26 10:15 a.m.19 views

Cross site scripting

A vulnerability has been reported in Cups Easy Purchase & Inventory, version 1.0, whereby user-controlled inputs are not sufficiently encoded, resulting in a Cross-Site Scripting XSS vulnerability via /cupseasylive/countrycreate.php, in the countryid parameter. Exploitation of this vulnerability...

5.8CVSS6AI score0.00399EPSS
Exploits0References1Affected Software1
0day.today
0day.today
added 2020/01/29 12:0 a.m.126 views

Cups Easy 1.0 - Cross Site Request Forgery (Password Reset) Vulnerability

Exploit for php platform in category web applications Title: Cups Easy 1.0 - Cross Site Request Forgery Password Reset Exploit Author: J3rryBl4nks Vendor Homepage: https://sourceforge.net/u/ajayshar76/profile/ Software Link: https://sourceforge.net/projects/cupseasy/files/cupseasylive-1.0/ Versio...

0.01548EPSS
Exploits6
Exploit DB
Exploit DB
added 2020/01/29 12:0 a.m.177 views

Cups Easy 1.0 - Cross Site Request Forgery (Password Reset)

Title: Cups Easy 1.0 - Cross Site Request Forgery Password Reset Date: 2020-01-28 Exploit Author: J3rryBl4nks Vendor Homepage: https://sourceforge.net/u/ajayshar76/profile/ Software Link: https://sourceforge.net/projects/cupseasy/files/cupseasylive-1.0/ Version: 1.0 Tested on Windows 10/Kali...

8.8CVSS7.6AI score0.01548EPSS
Exploits6
Prion
Prion
added 2020/01/28 11:15 p.m.10 views

Cross site request forgery (csrf)

Cups Easy Purchase & Inventory 1.0 is vulnerable to CSRF that leads to admin account deletion via userdelete.php...

4.3CVSS7AI score0.01233EPSS
Exploits5References2Affected Software1
Prion
Prion
added 2020/01/28 11:15 p.m.18 views

Cross site request forgery (csrf)

Cups Easy Purchase & Inventory 1.0 is vulnerable to CSRF that leads to admin account takeover via passwordmychange.php...

6.8CVSS8.7AI score0.01548EPSS
Exploits5References2Affected Software1
Cvelist
Cvelist
added 2020/01/28 10:11 p.m.24 views

CVE-2020-8424

Cups Easy Purchase & Inventory 1.0 is vulnerable to CSRF that leads to admin account takeover via passwordmychange.php...

8.7AI score0.01548EPSS
Exploits5References2
Cvelist
Cvelist
added 2020/01/28 10:10 p.m.20 views

CVE-2020-8425

Cups Easy Purchase & Inventory 1.0 is vulnerable to CSRF that leads to admin account deletion via userdelete.php...

7AI score0.01233EPSS
Exploits5References2
Rows per page
Query Builder