Lucene search
K

6 matches found

CVE
CVE
added 2015/06/15 3:0 p.m.73 views

CVE-2015-4119

ISPConfig contains CSRF vulnerabilities before 3.0.5.4p7 that can allow remote attackers to hijack admin sessions via admin/users_edit.php and to trigger SQL injections via monitor/show_sys_state.php. The issue is confirmed in multiple sources (NVD/NVD-derived records) and is linked to cross-site...

6.8CVSS8AI score0.0126EPSS
Exploits6References6Affected Software1
securityvulns
securityvulns
added 2015/06/14 12:0 a.m.85 views

Multiple Vulnerabilities in ISPConfig

Advisory ID: HTB23260 Product: ISPConfig Vendor: http://www.ispconfig.org Vulnerable Versions: 3.0.5.4p6 and probably prior Tested Version: 3.0.5.4p6 Advisory Publication: May 20, 2015 without technical details Vendor Notification: May 20, 2015 Vendor Patch: June 4, 2015 Public Disclosure: June 1...

6.8CVSS0.7AI score0.02135EPSS
Exploits7
Exploit DB
Exploit DB
added 2015/06/10 12:0 a.m.74 views

ISPConfig 3.0.5.4p6 - Multiple Vulnerabilities

Advisory ID: HTB23260 Product: ISPConfig Vendor: http://www.ispconfig.org Vulnerable Versions: 3.0.5.4p6 and probably prior Tested Version: 3.0.5.4p6 Advisory Publication: May 20, 2015 without technical details Vendor Notification: May 20, 2015 Vendor Patch: June 4, 2015 Public Disclosure: June 1...

6.8CVSS6.4AI score0.02135EPSS
Exploits7
Packet Storm
Packet Storm
added 2015/06/10 12:0 a.m.63 views

ISPConfig 3.0.5.4p6 SQL Injection / Cross Site Request Forgery

Advisory ID: HTB23260 Product: ISPConfig Vendor: http://www.ispconfig.org Vulnerable Versions: 3.0.5.4p6 and probably prior Tested Version: 3.0.5.4p6 Advisory Publication: May 20, 2015 without technical details Vendor Notification: May 20, 2015 Vendor Patch: June 4, 2015 Public Disclosure: June 1...

6.8CVSS0.6AI score0.02135EPSS
Exploits7
0day.today
0day.today
added 2015/06/10 12:0 a.m.81 views

ISPConfig 3.0.5.4p6 SQL Injection / Cross Site Request Forgery Vulnerabilities

ISPConfig version 3.0.5.4p6 suffers from cross site request forgery and remote SQL injection vulnerabilities. Product: ISPConfig Vendor: http://www.ispconfig.org Vulnerable Versions: 3.0.5.4p6 and probably prior Tested Version: 3.0.5.4p6 Advisory Publication: May 20, 2015 without technical detail...

6.8CVSS0.2AI score0.02135EPSS
Exploits7
exploitpack
exploitpack
added 2015/06/10 12:0 a.m.103 views

ISPConfig 3.0.5.4p6 - Multiple Vulnerabilities

ISPConfig 3.0.5.4p6 - Multiple Vulnerabilities Advisory ID: HTB23260 Product: ISPConfig Vendor: http://www.ispconfig.org Vulnerable Versions: 3.0.5.4p6 and probably prior Tested Version: 3.0.5.4p6 Advisory Publication: May 20, 2015 without technical details Vendor Notification: May 20, 2015 Vendo...

6.8CVSS0.5AI score0.02135EPSS
Exploits7
Rows per page
Query Builder