Lucene search
K

5 matches found

OSV
OSV
added 2023/11/21 12:15 a.m.2 views

CVE-2023-6142

Dev blog v1.0 allows to exploit an XSS through an unrestricted file upload, together with a bad entropy of filenames. With this an attacker can upload a malicious HTML file, then guess the filename of the uploaded file and send it to a potential victim...

5.4CVSS5.8AI score
Exploits0References2
CVE
CVE
added 2023/11/20 11:24 p.m.35 views

CVE-2023-6142

Dev Blog v1.0 is affected by an XSS vulnerability triggered via an unrestricted file upload with poor filename entropy. An attacker can upload a malicious HTML file and then guess the filename to deliver it to a victim. Affected component: Dev Blog (Node.js/Express/MongoDB) v1.0; root cause: lack...

5.4CVSS5.4AI score0.00425EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/20 12:0 a.m.3 views

PT-2023-32541 · Dev Blog · Dev Blog

Name of the Vulnerable Software and Affected Versions: Dev blog version 1.0 Description: The issue allows an attacker to exploit a cross-site scripting XSS vulnerability through an unrestricted file upload, combined with a bad entropy of filenames. This enables the attacker to upload a malicious...

6.4CVSS5.5AI score0.00425EPSS
Exploits1References7
WPVulnDB
WPVulnDB
added 2020/02/24 12:0 a.m.9 views

Ultimate Membership Pro < 8.6.2 - Multiple CSRF Issues via AJAX Calls, Insufficient Filename Entropy

Version 8.6.1 attempted fo fix multiple critical issues mainly lack of authorisation checks, allowing low privileges users to call the admin functions of the plugin, leading to PII disclosure and login bypasses. However, the fixes were not sufficient: - An indeedIsAdmin check was added to all AJA...

2.1AI score
Exploits0References2Affected Software1
wpexploit
wpexploit
added 2020/02/24 12:0 a.m.24 views

Ultimate Membership Pro < 8.6.2 - Multiple CSRF Issues via AJAX Calls, Insufficient Filename Entropy

Version 8.6.1 attempted fo fix multiple critical issues mainly lack of authorisation checks, allowing low privileges users to call the admin functions of the plugin, leading to PII disclosure and login bypasses. However, the fixes were not sufficient: - An indeedIsAdmin check was added to all AJA...

Exploits0References2
Rows per page
Query Builder