Lucene search
K

4 matches found

Prion
Prion
added 2009/08/25 5:30 p.m.16 views

Server side request forgery (ssrf)

CuteFlow 2.10.3 and 2.11.0c does not properly restrict access to pages/edituser.php, which allows remote attackers to modify usernames and passwords via a direct request...

7.5CVSS7.2AI score0.02328EPSS
Exploits1References3Affected Software1
exploitpack
exploitpack
added 2009/08/24 12:0 a.m.22 views

Cuteflow 2.10.3 - edituser.php Security Bypass

Cuteflow 2.10.3 - edituser.php Security Bypass It's possible edit the users including the admin account, bypassing the authentication through the address: http://localhost/cuteflow/pages/edituser.php?userid=1&language=pt&sortby=st rLastName&sortdir=ASC&start=1 The vulnerability is caused due to t...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2009/08/24 12:0 a.m.16 views

Cuteflow 2.10.3 edituser.php Security Bypass Vulnerability

No description provided by source. It's possible edit the users including the admin account, bypassing the authentication through the address: http://localhost/cuteflow/pages/edituser.php?userid=1&language=pt&sortby=st rLastName&sortdir=ASC&start=1 The vulnerability is caused due to the applicati...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/08/24 12:0 a.m.45 views

Cuteflow 2.10.3 - 'edituser.php' Security Bypass

It's possible edit the users including the admin account, bypassing the authentication through the address: http://localhost/cuteflow/pages/edituser.php?userid=1&language=pt&sortby=st rLastName&sortdir=ASC&start=1 The vulnerability is caused due to the application not properly restricting access ...

7AI score
Exploits0
Rows per page
Query Builder