Lucene search
K

5 matches found

Cvelist
Cvelist
added 2018/06/01 7:0 p.m.25 views

CVE-2018-11538

servlet/UserServlet in SearchBlox 8.6.6 has CSRF via the uname, upasswd1, upasswd2, role, and X-XSRF-TOKEN POST parameters because of CSRF Token Bypass...

8.8AI score0.12879EPSS
Exploits5References3
CVE
CVE
added 2018/06/01 7:0 p.m.62 views

CVE-2018-11538

SearchBlox 8.6.6 is affected by CVE-2018-11538 via a CSRF vulnerability in servlet/UserServlet. The issue arises because CSRF Token Bypass allows POST parameters (u_name, u_passwd1, u_passwd2, role, X-XSRF-TOKEN) to be exploited, enabling unauthorized actions such as creating an administrator acc...

8.8CVSS8.7AI score0.12879EPSS
Exploits5References3Affected Software1
exploitpack
exploitpack
added 2018/05/30 12:0 a.m.80 views

SearchBlox 8.6.6 - Cross-Site Request Forgery

SearchBlox 8.6.6 - Cross-Site Request Forgery Exploit Title: CSRF Privilege Escalation Creation of an administrator account on SearchBlox 8.6.6 Exploit Author: Canberk BOLAT, Ahmet GÜREL Software Link: https://www.searchblox.com/ Version: = SearchBlox Version 8.6.6 Platform: Java Tested on: Windo...

6.8CVSS0.8AI score0.12879EPSS
Exploits5
0day.today
0day.today
added 2018/05/30 12:0 a.m.54 views

SearchBlox 8.6.6 - Cross-Site Request Forgery Vulnerability

Exploit for java platform in category web applications Exploit Title: CSRF Privilege Escalation Creation of an administrator account on SearchBlox 8.6.6 Exploit Author: Canberk BOLAT, Ahmet GÜREL Software Link: https://www.searchblox.com/ Version: = SearchBlox Version 8.6.6 Platform: Java Tested...

0.12879EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/05/30 12:0 a.m.49 views

SearchBlox 8.6.6 - Cross-Site Request Forgery

Exploit Title: CSRF Privilege Escalation Creation of an administrator account on SearchBlox 8.6.6 Exploit Author: Canberk BOLAT, Ahmet GÜREL Software Link: https://www.searchblox.com/ Version: = SearchBlox Version 8.6.6 Platform: Java Tested on: Windows CVE: CVE-2018-11538 1. DETAILS Using...

8.8CVSS8.8AI score0.12879EPSS
Exploits5
Rows per page
Query Builder