5 matches found
CVE-2020-36136
SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive information via pmsendmail parameter in cszmodel.php...
Sql injection
SQL Injection vulnerability in oretnom23 School Faculty Scheduling System version 1.0, allows remote attacker to execute arbitrary code, escalate privilieges, and gain sensitive information via crafted payload to id parameter in manageuser.php...
Cross site request forgery (csrf)
Cross Site Request Forgery CSRF vulnerability in yzmcms version 5.6, allows remote attackers to escalate privileges and gain sensitive information sitemodel/add.html endpoint...
CVE-2016-4606
Curl before 7.49.1 in Apple OS X before macOS Sierra prior to 10.12 allows remote or local attackers to execute arbitrary code, gain sensitive information, cause denial-of-service conditions, bypass security restrictions, and perform unauthorized actions. This may aid in other attacks...
OpenSSL CA Certificate Security Bypass Vulnerability
This host is running OpenSSL and is prone to Security Bypass Vulnerability. OpenVAS Vulnerability Test $Id: secpodopensslcacertbypassvuln.nasl 5656 2017-03-21 11:03:12Z cfi $ OpenSSL CA Certificate Security Bypass Vulnerability Authors: Sujit Ghosal Copyright: Copyright c 2009 SecPod,...