3 matches found
Cobub Razor 0.7.2 Add New Superuser Account
Exploit Title: Cobub Razor 0.7.2 Add New Superuser User Date: 2018-03-07 Exploit Author: ppbi1/[email protected]/4 Vendor Homepage: https://github.com/cobub/razor/ Software Link: https://github.com/cobub/razor/ Version: 0.72 CVE : CVE-2018-7745 There is a vulnerability that can add an admnistrat...
Cobub Razor 0.7.2 - Add New Superuser Account
Exploit Title: Cobub Razor 0.7.2 Add New Superuser User Date: 2018-03-07 Exploit Author: ppb([email protected]) Vendor Homepage: https://github.com/cobub/razor/ Software Link: https://github.com/cobub/razor/ Version: 0.72 CVE : CVE-2018-7745 There is a vulnerability that can add an admnistrator use...
CVE-2018-7745
CVE-2018-7745 affects Western Bridge Cobub Razor 0.7.2. The vulnerability is a missing authentication for the URL /index.php?/install/installation/createuserinfo, allowing account creation without login. Attackers could create a new user (superuser) through a crafted POST request, as shown by pub...