Lucene search
K

7 matches found

OSV
OSV
added 2018/11/16 6:29 p.m.4 views

CVE-2018-18755

K-iwi Framework 1775 has SQL Injection via the admin/user/group/update usergroupid parameter or the admin/user/user/update userid parameter...

9.8CVSS5.8AI score0.03099EPSS
Exploits5References2
NVD
NVD
added 2018/11/16 6:29 p.m.26 views

CVE-2018-18755

K-iwi Framework 1775 has SQL Injection via the admin/user/group/update usergroupid parameter or the admin/user/user/update userid parameter...

9.8CVSS9.9AI score0.03099EPSS
Exploits5References2
Cvelist
Cvelist
added 2018/11/16 6:0 p.m.29 views

CVE-2018-18755

K-iwi Framework 1775 has SQL Injection via the admin/user/group/update usergroupid parameter or the admin/user/user/update userid parameter...

10AI score0.03099EPSS
Exploits5References2
CVE
CVE
added 2018/11/16 6:0 p.m.69 views

CVE-2018-18755

CVE-2018-18755 affects the open-source K-iwi Framework 1775. The vulnerability is a SQL Injection in backend admin endpoints: specifically the parameters at route=admin/user/group/update (user_group_id) and route=admin/user/user/update (user_id). Root cause is improper handling of these input par...

9.8CVSS9.9AI score0.03099EPSS
Exploits5References2Affected Software1
0day.today
0day.today
added 2018/10/31 12:0 a.m.43 views

K-iwi Framework 1775 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: K-iwi Framework 1775 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: http://www.k-iwi.com/ Software Link: https://sourceforge.net/projects/k-iwi/files/latest/download Version: 1775 Category: Webapps Tested on:...

0.03099EPSS
Exploits5
exploitpack
exploitpack
added 2018/10/29 12:0 a.m.19 views

K-iwi Framework 1775 - SQL Injection

K-iwi Framework 1775 - SQL Injection Exploit Title: K-iwi Framework 1775 - SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.k-iwi.com/ Software Link: https://sourceforge.net/projects/k-iwi/files/latest/download Version: 1775 Category: Webapps Teste...

7.5CVSS0.5AI score0.03099EPSS
Exploits5
Packet Storm
Packet Storm
added 2018/10/29 12:0 a.m.38 views

K-iwi Framework 1775 SQL Injection

Exploit Title: K-iwi Framework 1775 - SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.k-iwi.com/ Software Link: https://sourceforge.net/projects/k-iwi/files/latest/download Version: 1775 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE:...

0.5AI score0.03099EPSS
Exploits5
Rows per page
Query Builder