20 matches found
Authorization Bypass Through User-Controlled Key
Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key through the updatemessagebyid and deletemessagebyid handlers in channels.py. An attacker can overwrite or remove another member’s group or direct message conte...
Missing Authorization
Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Missing Authorization in the updatemessagebyid and deletemessagebyid endpoints due to missing ownership validation for messages. An attacker can alter or remove messages belonging to other users by sending...
WordPress plugin SMS for Lead Capture Forms 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...
CVE-2024-51488 Insufficient Validation in Delete Message in Ampache
Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing does not adequately validate CSRF tokens when users delete messages. This vulnerability could be exploited to forge CSRF attacks, allowing an attacker to delete messages to any...
CVE-2022-43066
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Master.php?f=deletemessage...
Online Diagnostic Lab Management System SQL注入漏洞
Online Diagnostic Lab Management System is an online diagnostic lab management system that provides a variety of diagnostic tasks online. online Diagnostic Lab Management System is vulnerable to SQL injection in version v1.0. The vulnerability stems from the affected version not properly filterin...
PT-2022-26736 · Unknown · Online Diagnostic Lab Management System
Name of the Vulnerable Software and Affected Versions: Online Diagnostic Lab Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/odlms/classes/Master.php?f=delete message" API endpoint...
CVE-2022-43066
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Master.php?f=deletemessage...
CVE-2022-42241
Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/classes/Master.php?f=deletemessage...
CVE-2022-42241
Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/classes/Master.php?f=deletemessage...
PT-2022-26327 · Unknown · Simple Cold Storage Management System
Name of the Vulnerable Software and Affected Versions: Simple Cold Storage Management System version 1.0 Description: The issue is related to SQL injection via the /csms/classes/Master.php?f=delete message endpoint. This allows for potential manipulation of database queries. Recommendations: For...
SourceCodester Online Railway Reservation System SQL注入漏洞(CNVD-2022-53361)
Sourcecodester Online Railway Reservation system is a web-based application that provides an online platform for rail or train station passengers or potential passengers to browse their schedules and reserve seats. sourceCodester Online Railway Reservation System v1.0 is vulnerable to a SQL...
Patient Records Management System SQL注入漏洞
Sourcecodester Hospital Patient Records Management System is a web-based application that provides hospitals with an automated platform to store and manage their patient records. Management System is vulnerable to a SQL injection vulnerability that originates in the...
WordPress Payment Form for PayPal Pro Plugin Cross-Site Scripting Vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.Payment Form for PayPal Pro plugin is used in one of the payment plugin. WordPress Payment Form for PayPal Pro...
Vanilla Forums Van2Shout Plugin 1.0.51 - Multiple CSRF Vulnerabilities
No description provided by source. Exploit Title: Vanilla Forums = 2.0.18.8 & Van2Shout 1.0.51 Multiple CSRF Google Dork: n/a Date: 13/4/13 Exploit Author: Henry Hoggard Vendor Homepage: http://vanillaforums.org/ , http://vanillaforums.org/addon/van2shout-plugin Software Link:...
Vanilla Forums Van2Shout Plugin 1.0.51 - Multiple Cross-Site Request Forgery Vulnerabilities
Vanilla Forums Van2Shout Plugin 1.0.51 - Multiple Cross-Site Request Forgery Vulnerabilities Exploit Title: Vanilla Forums where 1337 is the id. Bookmark CSRF: http://site.org/index.php=/vanilla/discussion/bookmark/1337 UnBookmark CSRF http://site.org/index.php=/vanilla/discussion/bookmark/1337?...
Messages Library 2.0 - Arbitrary Delete Message
!/usr/bin/perl -w Messages Library 2.0 ; $b = LWP::UserAgent-new or die "Could not initialize browser\n"; $b-agent'Mozilla/4.0 compatible; MSIE 7.0; Windows NT 5.1'; $host = $ARGV0 . "/admin/sms.php?Action=Delete&ID=".$id.""; $res = $b-requestHTTP::Request-newPOST=$host; print "\nBrought to you b...
Messages Library 2.0 - Arbitrary Delete Message
Messages Library 2.0 - Arbitrary Delete Message !/usr/bin/perl -w Messages Library 2.0 ; $b = LWP::UserAgent-new or die "Could not initialize browser\n"; $b-agent'Mozilla/4.0 compatible; MSIE 7.0; Windows NT 5.1'; $host = $ARGV0 . "/admin/sms.php?Action=Delete&ID=".$id.""; $res =...
ipsec-tools racoon DoS
The isakmpinforecv function in src/racoon/isakmpinf.c in racoon in Ipsec-tools before 0.6.7 allows remote attackers to cause a denial of service tunnel crash via crafted 1 DELETE ISAKMPNPTYPED and 2 NOTIFY ISAKMPNPTYPEN messages...
security flaw
KAME IKE daemon racoon does not properly handle hash values, which allows remote attackers to delete certificates via 1 a certain delete message that is not properly handled in isakmp.c or isakmpinf.c, or 2 a certain INITIAL-CONTACT message that is not properly handled in isakmpinf.c...