661 matches found
PT-2023-26703 · Froxlor · Froxlor
Name of the Vulnerable Software and Affected Versions: Froxlor version 2.0.21 Description: Our research team found a zeroday issue in Froxlor. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was...
Business Logic Errors
froxlor/froxlor is vulnerable to Business Logic Errors. The vulnerability exists in the update function pf Admins.php because the admin name is not properly validated for spaces which allows an attacker to save a user name with just spaces/...
SUSE CVE-2023-4304
Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22,2.1.0...
GHSA-9RMF-6QGJ-G3WJ Froxlor vulnerable to business logic errors
Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22...
Froxlor vulnerable to business logic errors
Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22...
CVE-2023-4304
Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22,2.1.0...
Code injection
Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22,2.1.0...
CVE-2023-4304
CVE-2023-4304 concerns Froxlor (froxlor/froxlor) with business logic errors in versions prior to 2.0.22 and 2.1.0. Connected documents identify the affected software as Froxlor and describe the issue as a logic/design flaw in the application rather than a low-level vulnerability in a library. Mit...
CVE-2023-4304 Business Logic Errors in froxlor/froxlor
Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22,2.1.0...
Froxlor Security Vulnerability
Froxlor is a lightweight server management software from the Froxlor team. A security vulnerability exists in Froxlor that stems from the presence of a business logic error...
PT-2023-28670 · Froxlor · Froxlor
Name of the Vulnerable Software and Affected Versions: froxlor versions prior to 2.0.22 froxlor version 2.1.0 Description: The issue concerns Business Logic Errors in the GitHub repository froxlor/froxlor. Recommendations: For versions prior to 2.0.22, update to version 2.0.22 or later. For versi...
Froxlor Command Execution Vulnerability
Froxlor is a set of lightweight server management software from the Froxlor team. A command execution vulnerability exists in versions prior to froxlor 2.0.21 that stems from an output encoding or escaping error. An attacker can exploit the vulnerability to cause command execution...
Remote Code Execution
Froxlor is vulnerable to Remote Code Execution. The vulnerability is due to not sanitizing or escaping the export configuration values/output. This leads to attacker including PHP code inside export configuration .json leading to RCE when the same configuration is executed when accessed by a...
GHSA-C6V5-PF66-XFQ8 Froxlor vulnerable to Improper Encoding or Escaping of Output
Improper Encoding or Escaping of Output in GitHub repository froxlor/froxlor prior to 2.0.21...
Froxlor vulnerable to Improper Encoding or Escaping of Output
Improper Encoding or Escaping of Output in GitHub repository froxlor/froxlor prior to 2.0.21...
CVE-2023-3668
Improper Encoding or Escaping of Output in GitHub repository froxlor/froxlor prior to 2.0.21...
Input validation
Improper Encoding or Escaping of Output in GitHub repository froxlor/froxlor prior to 2.0.21...
CVE-2023-3668 Improper Encoding or Escaping of Output in froxlor/froxlor
Improper Encoding or Escaping of Output in GitHub repository froxlor/froxlor prior to 2.0.21...
CVE-2023-3668 Improper Encoding or Escaping of Output in froxlor/froxlor
Improper Encoding or Escaping of Output in GitHub repository froxlor/froxlor prior to 2.0.21...
CVE-2023-3668
CVE-2023-3668 affects Froxlor (froxlor/froxlor) prior to version 2.0.21. The root cause is an improper encoding or escaping of output in the repository, which enables a command-execution vulnerability. Multiple sources confirm the impact as command execution in versions before 2.0.21. Remediation...