5 matches found
CVE-2018-11538
servlet/UserServlet in SearchBlox 8.6.6 has CSRF via the uname, upasswd1, upasswd2, role, and X-XSRF-TOKEN POST parameters because of CSRF Token Bypass...
CVE-2018-11538
SearchBlox 8.6.6 is affected by CVE-2018-11538 via a CSRF vulnerability in servlet/UserServlet. The issue arises because CSRF Token Bypass allows POST parameters (u_name, u_passwd1, u_passwd2, role, X-XSRF-TOKEN) to be exploited, enabling unauthorized actions such as creating an administrator acc...
SearchBlox 8.6.6 - Cross-Site Request Forgery
SearchBlox 8.6.6 - Cross-Site Request Forgery Exploit Title: CSRF Privilege Escalation Creation of an administrator account on SearchBlox 8.6.6 Exploit Author: Canberk BOLAT, Ahmet GÜREL Software Link: https://www.searchblox.com/ Version: = SearchBlox Version 8.6.6 Platform: Java Tested on: Windo...
SearchBlox 8.6.6 - Cross-Site Request Forgery Vulnerability
Exploit for java platform in category web applications Exploit Title: CSRF Privilege Escalation Creation of an administrator account on SearchBlox 8.6.6 Exploit Author: Canberk BOLAT, Ahmet GÜREL Software Link: https://www.searchblox.com/ Version: = SearchBlox Version 8.6.6 Platform: Java Tested...
SearchBlox 8.6.6 - Cross-Site Request Forgery
Exploit Title: CSRF Privilege Escalation Creation of an administrator account on SearchBlox 8.6.6 Exploit Author: Canberk BOLAT, Ahmet GÜREL Software Link: https://www.searchblox.com/ Version: = SearchBlox Version 8.6.6 Platform: Java Tested on: Windows CVE: CVE-2018-11538 1. DETAILS Using...