6 matches found
CVE-2022-26180
qdPM 9.2 allows Cross-Site Request Forgery CSRF via the index.php/myAccount/update URI...
CVE-2022-26180
creationtimestamp| type| source ---|---|--- 2022-04-09 00:13:30+00:00| seen| https://t.me/cibsecurity/40418...
CVE-2022-26180
The CVE-2022-26180 describes a CSRF vulnerability in qdPM 9.2 that can be exploited via the index.php/myAccount/update URI due to lack of CSRF token validation. Impact is high (C/H/I/A = High) with CVSS 3.1 base score 8.8; basic user interaction required (per the NVD entry). Exploitation details ...
qdPM 9.2 Cross Site Request Forgery
Exploit Title: qdPM 9.2 - Cross-site Request Forgery CSRF Google Dork: NA Date: 03/27/2022 Exploit Author: Chetanya Sharma @AggressiveUser Vendor Homepage: https://qdpm.net/ Software Link: https://sourceforge.net/projects/qdpm/files/latest/download Version: 9.2 Tested on: KALI OS CVE :...
qdPM 9.2 - Cross-site Request Forgery Vulnerability
Exploit Title: qdPM 9.2 - Cross-site Request Forgery CSRF Google Dork: NA Exploit Author: Chetanya Sharma @AggressiveUser Vendor Homepage: https://qdpm.net/ Software Link: https://sourceforge.net/projects/qdpm/files/latest/download Version: 9.2 Tested on: KALI OS CVE : CVE-2022-26180...
qdPM 9.2 - Cross-site Request Forgery (CSRF)
Exploit Title: qdPM 9.2 - Cross-site Request Forgery CSRF Google Dork: NA Date: 03/27/2022 Exploit Author: Chetanya Sharma @AggressiveUser Vendor Homepage: https://qdpm.net/ Software Link: https://sourceforge.net/projects/qdpm/files/latest/download Version: 9.2 Tested on: KALI OS CVE :...