Lucene search
K

5 matches found

NVD
NVD
added 2014/06/19 2:55 p.m.21 views

CVE-2014-4333

Cross-site request forgery CSRF vulnerability in administration/profiles.php in Dolphin 7.1.4 and earlier allows remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via the members parameter, related to CVE-2014-3810...

6.8CVSS7.8AI score0.00938EPSS
Exploits1References3
NVD
NVD
added 2014/06/19 2:55 p.m.28 views

CVE-2014-3810

SQL injection vulnerability in administration/profiles.php in BoonEx Dolphin 7.1.4 and earlier allows remote authenticated administrators to execute arbitrary SQL commands via the members parameter. NOTE: this can be exploited by remote attackers by leveraging CVE-2014-4333...

6.5CVSS7.8AI score0.01658EPSS
Exploits3References5
Prion
Prion
added 2014/06/19 2:55 p.m.20 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in administration/profiles.php in Dolphin 7.1.4 and earlier allows remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via the members parameter, related to CVE-2014-3810...

6.8CVSS8.3AI score0.01658EPSS
Exploits4References3Affected Software1
Cvelist
Cvelist
added 2014/06/19 2:0 p.m.24 views

CVE-2014-4333

Cross-site request forgery CSRF vulnerability in administration/profiles.php in Dolphin 7.1.4 and earlier allows remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via the members parameter, related to CVE-2014-3810...

7.8AI score0.00938EPSS
Exploits1References3
CVE
CVE
added 2014/06/19 2:0 p.m.42 views

CVE-2014-4333

BoonEx Dolphin 7.1.4 and earlier contains a CSRF vulnerability in administration/profiles.php that enables remote attackers to hijack administrator sessions for requests that trigger an SQL injection via the members[] parameter. The issue is related to CVE-2014-3810, which confirms an SQL injecti...

6.8CVSS8AI score0.00938EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder