3 matches found
CVE-2019-7654
Wowza Streaming Engine 4.8.0 and earlier suffers from multiple CSRF vulnerabilities. For example, an administrator, by following a link, can be tricked into making unwanted changes such as adding another admin user via enginemanager/server/user/edit.htm in the Server-Users component. This issue w...
CVE-2019-7654
CVE-2019-7654 affects Wowza Streaming Engine 4.8.0 and earlier, with multiple CSRF vulnerabilities in the Server->Users area (notably enginemanager/server/user/edit.htm) that can trick an administrator into unauthorized changes (e.g., adding an admin user). Root cause: CSRF in the admin UI flo...
theratnerschool.org XSS vulnerability
Open Bug Bounty ID: OBB-715470 Description| Value ---|--- Affected Website:| theratnerschool.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:|...