Lucene search
K

4 matches found

NVD
NVD
added 2010/09/24 9:0 p.m.13 views

CVE-2010-3603

Cross-site request forgery CSRF vulnerability in the file manager service Services/FileService.ashx in mojoPortal 2.3.4.3 and 2.3.5.1 allows remote attackers to hijack the authentication of administrators for requests that rename arbitrary files, as demonstrated by causing the user.config file to...

6.8CVSS7.4AI score0.02457EPSS
Exploits1References7
Prion
Prion
added 2010/09/24 9:0 p.m.11 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the file manager service Services/FileService.ashx in mojoPortal 2.3.4.3 and 2.3.5.1 allows remote attackers to hijack the authentication of administrators for requests that rename arbitrary files, as demonstrated by causing the user.config file to...

6.8CVSS7.9AI score0.02457EPSS
Exploits1References7Affected Software1
CVE
CVE
added 2010/09/24 7:44 p.m.43 views

CVE-2010-3603

CVE-2010-3603 is a CSRF vulnerability in mojoPortal 2.3.4.3 and 2.3.5.1, affecting the file manager (Services/FileService.ashx). The issue allows remote attackers to hijack administrator authentication to rename arbitrary files (e.g., moving user.config), causing service disruption (DoS) and pote...

6.8CVSS7.6AI score0.02457EPSS
Exploits1References7Affected Software1
Prion
Prion
added 2007/12/20 12:46 a.m.13 views

Heap overflow

Heap-based buffer overflow in Open File Manager service ofmnt.exe in St. Bernard Open File Manager 9.5 allows remote attackers to execute arbitrary code via a long request...

10CVSS8.7AI score0.06614EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder