Lucene search
K

6 matches found

Cvelist
Cvelist
added 2017/04/10 3:0 a.m.18 views

CVE-2015-8255

AXIS Communications products allow CSRF, as demonstrated by admin/pwdgrp.cgi, vaconfig.cgi, and admin/localdel.cgi...

8.8AI score0.02171EPSS
Exploits5References1
CVE
CVE
added 2017/04/10 3:0 a.m.65 views

CVE-2015-8255

CVE-2015-8255 describes a Cross-Site Request Forgery vulnerability in AXIS Communications devices with a Web Interface. The embedded web app does not verify that a request is intentionally submitted by the user, enabling unauthorized state-changing actions. Documented impact includes CSRF-enabled...

8.8CVSS8.7AI score0.02171EPSS
Exploits5References1Affected Software1
Exploit DB
Exploit DB
added 2017/03/17 12:0 a.m.62 views

AXIS (Multiple Products) - Cross-Site Request Forgery

0RWELLL4BS security advisory olsa-CVE-2015-8255 PGP: 79A6CCC0 @orwelllabs Advisory Information ==================== - Title: Cross-Site Request Forgery - Vendor: AXIS Communications - Research and Advisory: Orwelllabs - Class: Session Management control CWE-352 - CVE Name: CVE-2015-8255 - Affecte...

8.8CVSS8.8AI score0.02171EPSS
Exploits5
exploitpack
exploitpack
added 2017/03/17 12:0 a.m.42 views

AXIS (Multiple Products) - Cross-Site Request Forgery

AXIS Multiple Products - Cross-Site Request Forgery 0RWELLL4BS security advisory olsa-CVE-2015-8255 PGP: 79A6CCC0 @orwelllabs Advisory Information ==================== - Title: Cross-Site Request Forgery - Vendor: AXIS Communications - Research and Advisory: Orwelllabs - Class: Session Management...

6.8CVSS0.1AI score0.02171EPSS
Exploits5
Packet Storm
Packet Storm
added 2017/03/17 12:0 a.m.61 views

AXIS Communications Cross Site Request Forgery

0RWELLL4BS security advisory olsa-CVE-2015-8255 PGP: 79A6CCC0 @orwelllabs Advisory Information ==================== - Title: Cross-Site Request Forgery - Vendor: AXIS Communications - Research and Advisory: Orwelllabs - Class: Session Management control CWE-352 - CVE Name: CVE-2015-8255 - Affecte...

0.1AI score0.02171EPSS
Exploits5
0day.today
0day.today
added 2017/03/17 12:0 a.m.42 views

AXIS Communications Cross Site Request Forgery Vulnerability

Exploit for hardware platform in category web applications Advisory Information ==================== - Title: Cross-Site Request Forgery - Vendor: AXIS Communications - Research and Advisory: Orwelllabs - Class: Session Management control CWE-352 - CVE Name: CVE-2015-8255 - Affected Versions: - I...

6.8CVSS0.2AI score0.02171EPSS
Exploits5
Rows per page
Query Builder