Lucene search
K

11 matches found

Veracode
Veracode
added 2024/06/24 7:0 a.m.17 views

Insecure Direct Object Reference (IDOR)

jweiland/events2 is vulnerable to Insecure Direct Object Reference IDOR. The vulnerability is due to missing access checks in the management plugin, which allows an attacker to activate or delete events without authentication...

5.4CVSS6.6AI score0.0029EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/06/21 9:30 a.m.10 views

GHSA-CCHP-3RQ6-69WJ events2 TYPO3 extension insecure direct object reference (IDOR) vulnerability

An issue was discovered in the events2 aka Events 2 extension before 8.3.8 and 9.x before 9.0.6 for TYPO3. Missing access checks in the management plugin lead to an insecure direct object reference IDOR vulnerability with the potential to activate or delete various events for unauthenticated user...

5.4CVSS5.4AI score0.0029EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2021/11/16 12:0 a.m.68 views

Security update for drbd-utils (low)

openSUSE Security Update: Security update for drbd-utils Announcement ID: openSUSE-SU-2021:3665-1 Rating: low References: 1029961 1185132 1189363 SLE-21057 Affected Products: openSUSE Leap 15.3 An update that contains security fixes and contains one feature can now be installed. Description: This...

7.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/11/30 12:43 p.m.4 views

josephmartines.org XSS vulnerability

Open Bug Bounty ID: OBB-705407 Description| Value ---|--- Affected Website:| josephmartines.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/11/30 11:9 a.m.7 views

starscharter.org XSS vulnerability

Open Bug Bounty ID: OBB-705362 Description| Value ---|--- Affected Website:| starscharter.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/11/30 9:21 a.m.17 views

somersetnlv.org XSS vulnerability

Open Bug Bounty ID: OBB-705209 Description| Value ---|--- Affected Website:| somersetnlv.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/11/30 9:20 a.m.9 views

steinmetzcp.org XSS vulnerability

Open Bug Bounty ID: OBB-705207 Description| Value ---|--- Affected Website:| steinmetzcp.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/11/29 7:27 p.m.10 views

somersetacademysh.com XSS vulnerability

Open Bug Bounty ID: OBB-705019 Description| Value ---|--- Affected Website:| somersetacademysh.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/05/22 11:7 a.m.6 views

blackbarn.com XSS vulnerability

Open Bug Bounty ID: OBB-620114 Description| Value ---|--- Affected Website:| blackbarn.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Prion
Prion
added 2008/06/03 3:32 p.m.13 views

Sql injection

Multiple SQL injection vulnerabilities in Concepts & Solutions QuickUpCMS allow remote attackers to execute arbitrary SQL commands via the 1 nr parameter to a frontend/news.php, the 2 id parameter to b events3.php and c videos2.php in frontend/, the 3 y parameter to d frontend/events2.php, and th...

7.5CVSS9.3AI score0.00999EPSS
Exploits0References3
seebug.org
seebug.org
added 2008/05/12 12:0 a.m.16 views

QuickUpCMS Multiple Remote SQL Injection Vulnerabilities Exploit

No description provided by source. ?php iniset"maxexecutiontime",0; printr' QuickUpCMS - SQL Injection Exploit Vulnerability discovered by: LidlosesAuge Exploit coded by: LidlosesAuge Greetz to: -=Player=- , Suicide, g4ms3, enco, GPM...

7.1AI score
Exploits0
Rows per page
Query Builder