3 matches found
Cups Easy 1.0 Cross Site Request Forgery
Title: Cups Easy 1.0 - Cross Site Request Forgery Password Reset Date: 2020-01-28 Exploit Author: J3rryBl4nks Vendor Homepage: https://sourceforge.net/u/ajayshar76/profile/ Software Link: https://sourceforge.net/projects/cupseasy/files/cupseasylive-1.0/ Version: 1.0 Tested on Windows 10/Kali...
CVE-2020-8424
Cups Easy Purchase & Inventory 1.0 is vulnerable to CSRF that leads to admin account takeover via passwordmychange.php...
CVE-2020-8424
CVE-2020-8424 affects Cups Easy (Purchase & Inventory) 1.0. The vulnerability is a Cross-Site Request Forgery (CSRF) that can lead to an admin password change via passwordmychange.php, enabling admin account takeover. Connected sources document exploitation PoCs and writeups (e.g., Exploit DB, Pa...