Lucene search
+L

6 matches found

prion
prion
added 2019/04/18 11:29 p.m.12 views

Default credentials

MKCMS 5.0 allows remote attackers to take over arbitrary user accounts by posting a username and e-mail address to ucenter/repass.php, which triggers e-mail transmission with the password, as demonstrated by 123456...

6.8CVSS8.6AI score0.01824EPSS
Exploits1References1Affected Software1
nvd
nvd
added 2019/04/18 11:29 p.m.20 views

CVE-2019-11332

MKCMS 5.0 allows remote attackers to take over arbitrary user accounts by posting a username and e-mail address to ucenter/repass.php, which triggers e-mail transmission with the password, as demonstrated by 123456...

8.8CVSS8.7AI score0.01824EPSS
Exploits1References1
cvelist
cvelist
added 2019/04/18 10:17 p.m.28 views

CVE-2019-11332

MKCMS 5.0 allows remote attackers to take over arbitrary user accounts by posting a username and e-mail address to ucenter/repass.php, which triggers e-mail transmission with the password, as demonstrated by 123456...

8.7AI score0.01824EPSS
Exploits1References1
cve
cve
added 2019/04/18 10:17 p.m.46 views

CVE-2019-11332

The CVE-2019-11332 entry concerns MKCMS 5.0. Affected component: the repass.php flow in ucenter. The issue allows remote attackers to takeover arbitrary user accounts by posting a username and e-mail address, which triggers an e‑mail containing the user’s password (demo: 123456). The Red Hat and ...

8.8CVSS8.6AI score0.01824EPSS
Exploits1References1Affected Software1
nvd
nvd
added 2016/11/30 11:59 a.m.18 views

CVE-2016-2937

IBM BigFix Remote Control before 9.1.3 allows remote attackers to obtain sensitive information or spoof e-mail transmission via a crafted POST request, related to an "untrusted information vulnerability."...

6.5CVSS6.2AI score0.01254EPSS
Exploits0References3
prion
prion
added 2016/11/30 11:59 a.m.15 views

Design/Logic Flaw

IBM BigFix Remote Control before 9.1.3 allows remote attackers to obtain sensitive information or spoof e-mail transmission via a crafted POST request, related to an "untrusted information vulnerability."...

6.4CVSS6.5AI score0.01254EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder