239 matches found
DirectAdmin 1.55 - CMD_ACCOUNT_ADMIN Cross-Site Request Forgery
DirectAdmin 1.55 - CMDACCOUNTADMIN Cross-Site Request Forgery Exploit title: DirectAdmin v1.55 - CSRF via CMDACCOUNTADMIN Admin Panel Date: 03/03/2019 Exploit Author: ManhNho Vendor Homepage: https://www.directadmin.com/ Software Link: https://www.directadmin.com/ Demo Link:...
DirectAdmin 1.55 Cross Site Request Forgery
Exploit title: DirectAdmin v1.55 - CSRF via CMDACCOUNTADMIN Admin Panel Date: 03/03/2019 Exploit Author: ManhNho Vendor Homepage: https://www.directadmin.com/ Software Link: https://www.directadmin.com/ Demo Link: https://www.directadmin.com:2222/CMDACCOUNTADMIN Version: 1.55 CVE: CVE-2019-9625...
Cross site request forgery (csrf)
JBMC DirectAdmin 1.55 allows CSRF via the /CMDACCOUNTADMIN URI to create a new admin account...
CVE-2019-9625
JBMC DirectAdmin 1.55 allows CSRF via the /CMDACCOUNTADMIN URI to create a new admin account...
CVE-2019-9625
JBMC DirectAdmin 1.55 allows CSRF via the /CMDACCOUNTADMIN URI to create a new admin account...
CVE-2019-9625
JBMC DirectAdmin 1.55 allows CSRF via the /CMDACCOUNTADMIN URI to create a new admin account...
CVE-2019-9625
DirectAdmin 1.55 is vulnerable to a Cross-Site Request Forgery (CSRF) via the CMD_ACCOUNT_ADMIN URI, enabling an attacker to create a new admin account. The flaw is triggered in scenarios where an authenticated admin visits a crafted page or form that issues a POST to /CMD_ACCOUNT_ADMIN, as descr...
Unspecified Vulnerability in JBMC DirectAdmin
JBMC DirectAdmin is a server visual management panel from JBMC Software Canada. A security vulnerability exists in JBMC DirectAdmin versions prior to 1.52. A remote attacker can exploit this vulnerability by sending a request to gain access or cause a denial of service segmentation error...
Design/Logic Flaw
JBMC DirectAdmin before 1.52, when the emailftppasswordchange setting is nonzero, allows remote attackers to obtain access or cause a denial of service segfault via an unspecified request...
CVE-2017-18045
JBMC DirectAdmin before 1.52, when the emailftppasswordchange setting is nonzero, allows remote attackers to obtain access or cause a denial of service segfault via an unspecified request...
CVE-2017-18045
JBMC DirectAdmin before 1.52, when the emailftppasswordchange setting is nonzero, allows remote attackers to obtain access or cause a denial of service segfault via an unspecified request...
CVE-2017-18045
CVE-2017-18045 affects JBMC DirectAdmin prior to 1.52. When the email_ftp_password_change setting is nonzero, remote attackers can obtain access or cause a denial of service (segmentation fault) via an unspecified request. Connected sources corroborate the description across Red Hat and CNVD entr...
CVE-2017-18045
JBMC DirectAdmin before 1.52, when the emailftppasswordchange setting is nonzero, allows remote attackers to obtain access or cause a denial of service segfault via an unspecified request...
DirectAdmin Web Control Panel Login Utility
This module will attempt to authenticate to a DirectAdmin Web Control Panel. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/loginscanner/directadmin' require...
DirectAdmin Control Panel 1.50.1 Cross Site Scripting
@@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@@@@@@@@@ @@@ @ @@@@@@@@@@ @@@ @@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@ @@@ @@@ @@ @@@...
DirectAdmin DoS Vulnerability
DirectAdmin is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
DirectAdmin Detection (HTTP)
HTTP based detection of DirectAdmin. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.106500";...
DirectAdmin 1.50.1 - Denial of Service Vulnerability
Exploit for php platform in category dos / poc Directadmin ControlPanel 1.50.1 denial of service Vulnerability Directadmin Version : 1.50.1 And Old Version Testet On : Centos 6 - Directadmin 1.50.1 Vendor site : http://www.directadmin.com Author : Amir email protected - https://telegram.me/AmirAm...
DirectAdmin Denial of Service Vulnerability
DirectAdmin is a set of foreign development features very strong web hosting online management system, through this management system you can easily manage your server, set up EMAIL, set up DNS, open FTP, online file management, database management, etc., to facilitate administrators, customers a...
DirectAdmin Control Panel 1.50.1 Denial Of Service
@@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@@@@@@@@@ @@@ @ @@@@@@@@@@ @@@ @@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@ @@@ @@@ @@ @@@...