18 matches found
CVE-1999-0930
wwwboard allows a remote attacker to delete message board articles via a malformed argument...
CVE-2022-27174
Cross-site request forgery CSRF vulnerability in Easy Blog for EC-CUBE4 Ver.1.0.1 and earlier allows a remote unauthenticated attacker to hijack the authentication of the administrator and delete a blog article or a category via a specially crafted page...
CVE-2022-27174
Cross-site request forgery CSRF vulnerability in Easy Blog for EC-CUBE4 Ver.1.0.1 and earlier allows a remote unauthenticated attacker to hijack the authentication of the administrator and delete a blog article or a category via a specially crafted page...
CVE-2021-41564
Tad Honor viewing book list function is vulnerable to authorization bypass, thus remote attackers can use special parameters to delete articles arbitrarily without logging in...
CVE-2021-41564
Tad Honor viewing book list function is vulnerable to authorization bypass, thus remote attackers can use special parameters to delete articles arbitrarily without logging in...
Authorization
Tad Honor viewing book list function is vulnerable to authorization bypass, thus remote attackers can use special parameters to delete articles arbitrarily without logging in...
CVE-2021-41564 Tad Honor - Improper Authorization
Tad Honor viewing book list function is vulnerable to authorization bypass, thus remote attackers can use special parameters to delete articles arbitrarily without logging in...
Pluck 跨站请求伪造漏洞
Pluck is a content management system CMS developed using the PHP language. A cross-site request forgery vulnerability exists in Pluck CMS version 4.7.9. A remote attacker can exploit this vulnerability to execute arbitrary code and delete specific articles via the component "/admin.php?action=pag...
Cross site request forgery (csrf)
An issue was discovered in Pluck 4.7.9-dev1. There is a CSRF vulnerability that can delete articles via a /admin.php?action=deletepage&var1= URI...
CVE-2019-9051
An issue was discovered in Pluck 4.7.9-dev1. There is a CSRF vulnerability that can delete articles via a /admin.php?action=deletepage&var1= URI...
CVE-2019-8902
An issue was discovered in idreamsoft iCMS through 7.0.14. A CSRF vulnerability can delete users' articles via the public/api.php?app=user URI...
AKCMS Cross-Site Request Forgery Vulnerability
AKCMS is a lightweight content management system CMS based on PHP and MySQL. A cross-site request forgery vulnerability exists in AKCMS version 6.1. A remote attacker can exploit the vulnerability to delete articles...
Cross site request forgery (csrf)
An issue was discovered in AKCMS 6.1. CSRF can delete an article via an admincp deleteitem action to index.php...
Datenstrom Yellow Cross-Site Request Forgery Vulnerability
Datenstrom Yellow is a system for creating small websites, blogs and wikis. A cross-site request forgery vulnerability exists in the edit/ URI in Datenstrom Yellow version 0.7.3. A remote attacker could exploit this vulnerability to delete articles...
CVE-2018-10248
An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can delete any article via index.php?m=content&f=content&v=recycledelete...
ContaoCMS (aka TYPOlight) 2.11 - Cross-Site Request Forgery (Delete Admin Delete Article)
ContaoCMS aka TYPOlight 2.11 - Cross-Site Request Forgery Delete Admin Delete Article +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : ContaoCMS aka TYPOlight = 2.11 CSRF Delete Admin- Delete Article...
LulieBlog 1.0.1 - Remote Authentication Bypass
LulieBlog 1.0.1 - Remote Authentication Bypass -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- LulieBlog 1.0.1 delete id Remote Admin Bypass Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- bug found by ka0x contact: D.O.M TEAM 2008 we are: ka0x, an0de,...
CVE-1999-0930
wwwboard allows a remote attacker to delete message board articles via a malformed argument...