6 matches found
EUVD-2018-19040
Malware in sbrugna...
DanWin hosting var/www/html/files.php cross-site request forgery vulnerability
DanWin hosting is a TOR-based installation program for shared hosting servers. A cross-site request forgery vulnerability exists in the var/www/html/files.php file in DanWin hosting 2018-02-11 and earlier versions. A remote attacker can use this vulnerability to add/delete/change arbitrary files ...
Cross site request forgery (csrf)
A CSRF issue was found in var/www/html/files.php in DanWin hosting through 2018-02-11 that allows arbitrary remote users to add/delete/modify any files in any hosting account...
CVE-2018-7308
A CSRF issue was found in var/www/html/files.php in DanWin hosting through 2018-02-11 that allows arbitrary remote users to add/delete/modify any files in any hosting account...
CVE-2018-7308
A CSRF issue was found in var/www/html/files.php in DanWin hosting through 2018-02-11 that allows arbitrary remote users to add/delete/modify any files in any hosting account...
CVE-2018-7308
CVE-2018-7308 affects DanWin hosting (var/www/html/files.php) up to 2018-02-11. The vulnerability is a cross-site request forgery (CSRF) that lets arbitrary remote users add/delete/modify files in any hosting account. Root cause is CSRF in the affected script; no exploitation details are provided...