Lucene search
+L

5 matches found

CVE
CVE
added 2019/07/02 3:18 p.m.124 views

CVE-2019-13056

CVE-2019-13056 affects CyberPanel up to version 1.8.4, where the user edit page is vulnerable to CSRF. The root cause is a lack of CSRF protection, enabling an attacker to change the administrator’s email and password by sending a forged request to the target server. Practical impact is administr...

8.8CVSS8.8AI score0.00838EPSS
Exploits5References2Affected Software1
0day.today
0day.today
added 2019/07/02 12:0 a.m.129 views

CyberPanel 1.8.4 - Cross-Site Request Forgery Vulnerability

Exploit for multiple platform in category web applications Title: CyberPanel Administrator Account Takeover fetch'https://SERVERIP:8090/users/saveModifications', method: 'POST', credentials: 'include', headers: 'Content-Type': 'text/plain', body:...

0.1AI score0.00838EPSS
Exploits5
exploitpack
exploitpack
added 2019/07/01 12:0 a.m.102 views

CyberPanel 1.8.4 - Cross-Site Request Forgery

CyberPanel 1.8.4 - Cross-Site Request Forgery Title: CyberPanel Administrator Account Takeover fetch'https://SERVERIP:8090/users/saveModifications', method: 'POST', credentials: 'include', headers: 'Content-Type': 'text/plain', body:...

6.8CVSS1.1AI score0.00838EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/07/01 12:0 a.m.88 views

CyberPanel 1.8.4 - Cross-Site Request Forgery

Title: CyberPanel Administrator Account Takeover fetch'https://SERVERIP:8090/users/saveModifications', method: 'POST', credentials: 'include', headers: 'Content-Type': 'text/plain', body:...

8.8CVSS9AI score0.00838EPSS
Exploits5
Packet Storm
Packet Storm
added 2019/07/01 12:0 a.m.92 views

CyberPanel 1.8.4 Cross Site Request Forgery

Title: CyberPanel Administrator Account Takeover fetch'https://SERVERIP:8090/users/saveModifications', method: 'POST', credentials: 'include', headers: 'Content-Type': 'text/plain', body:...

0.9AI score0.00838EPSS
Exploits5
Rows per page
Query Builder