Lucene search
K

89 matches found

Prion
Prion
added 2021/08/09 11:15 a.m.11 views

Design/Logic Flaw

A host header attack vulnerability exists in FUEL CMS 1.5.0 through fuel/modules/fuel/config/fuelconstants.php and fuel/modules/fuel/libraries/Asset.php. An attacker can use a man in the middle attack such as phishing...

6.8CVSS7.9AI score0.01294EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2021/08/09 10:58 a.m.48 views

CVE-2021-38290

CVE-2021-38290 affects FUEL CMS 1.5.0, with the issue localized to fuel/modules/fuel/config/fuel_constants.php and fuel/modules/fuel/libraries/Asset.php. The vulnerability is described as a host header attack that could enable man-in-the-middle-style abuse (e.g., phishing). The Connected document...

8.1CVSS7.9AI score0.01294EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2021/08/05 12:0 a.m.5 views

Vmware vRealize Automation 授权问题漏洞

Vmware vRealize Automation is a management tool that provides self-service, supervised multi-cloud automation from Vmware, Inc. An authorization issue vulnerability exists in Vmware vRealize Automation version 7.6, which stems from the software not adequately validating user-supplied input in the...

9.8CVSS8.5AI score0.01207EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/05/05 7:15 p.m.34 views

CVE-2021-22903

A flaw was found in rubygem-actionpack. Specially crafted Host headers in combination with certain "allowed host" formats can cause the Host Authorization middleware in Action Pack to redirect users to a malicious website. The highest threat from this vulnerability is to data integrity...

6.5CVSS3.8AI score0.01224EPSS
Exploits0References3
CNVD
CNVD
added 2021/03/18 12:0 a.m.8 views

Unnamed Vulnerability in October CMS

October CMS is an open source content management system CMS based on PHP and Laravel web application framework. October before version 1.1.2 suffers from a security vulnerability that stems from a host header attack that may succeed when running on a misconfigured server. No detailed vulnerabilit...

7.5CVSS6.9AI score0.01514EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/02/16 12:0 a.m.3 views

PT-2021-2473

Name of the Vulnerable Software and Affected Versions Accellion FTA versions 9 12 370 and earlier Description The issue is related to a lack of protection against SQL query structure exploitation. This can be exploited by a remote attacker to execute arbitrary SQL code and gain unauthorized acces...

9.8CVSS7.8AI score0.05998EPSS
Exploits0References21
RedHat Linux
RedHat Linux
added 2020/01/13 10:12 a.m.3 views

rabbitmq-server: "X-Reason" HTTP Header can be leveraged to insert a malicious string leading to DoS

A resource-consumption flaw was identified in the rabbitmq-server web management plugin. Utilizing a malicious 'X-Reason' HTTP header, a remote attacker could insert a malicious Erlang format string which will expand and consume heap memory, resulting in a crash. The highest threat from this...

7.5CVSS7.2AI score0.04519EPSS
Exploits1References5
OSV
OSV
added 2020/01/06 6:15 a.m.4 views

CVE-2019-5990

Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allow remote attackers to obtain a login password via HTTP referer...

7.5CVSS6.8AI score0.01262EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2018/10/31 12:0 a.m.5 views

The vulnerability of the FortiOS operating system arises from insufficient protection of the web page structure, allowing attackers to inject arbitrary JavaScript or HTML code.

The vulnerability of the FortiOS operating system arises from insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript or HTML code using a specially crafted HTTP request header named “Host”...

6.1CVSS5.7AI score0.01075EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2018/08/06 8:29 p.m.5 views

CVE-2018-7068

HPE has identified a remote HOST header attack vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. This issue is resolved in HF16 for HPE CV 6.1 or subsequent version...

6.1CVSS5.8AI score0.00974EPSS
Exploits0References1
NVD
NVD
added 2018/08/06 8:29 p.m.14 views

CVE-2018-7068

HPE has identified a remote HOST header attack vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. This issue is resolved in HF16 for HPE CV 6.1 or subsequent version...

6.1CVSS6.2AI score0.00974EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/08/06 8:0 p.m.17 views

CVE-2018-7068

HPE has identified a remote HOST header attack vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. This issue is resolved in HF16 for HPE CV 6.1 or subsequent version...

6.3AI score0.00974EPSS
Exploits0References1
OSV
OSV
added 2018/06/04 2:29 p.m.5 views

CVE-2018-11714

An issue was discovered on TP-Link TL-WR840N v5 00000005 0.9.1 3.16 v0001.0 Build 170608 Rel.58696n and TL-WR841N v13 00000013 0.9.1 4.16 v0001.0 Build 170622 Rel.64334n devices. This issue is caused by improper session handling on the /cgi/ folder or a /cgi file. If an attacker sends a header of...

9.8CVSS5.8AI score
Exploits0References2
Prion
Prion
added 2018/04/18 7:29 p.m.16 views

Improper access control

cmsmadesimple version 2.2.7 contains a Incorrect Access Control vulnerability in the function of sendrecoveryemail in the line "$url = $config'adminurl' . '/login.php?recoverme=' . $code;" that can result in Administrator Password Reset Poisoning, specifically a reset URL pointing at an attacker...

4.3CVSS8.6AI score0.01086EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2018/04/18 7:29 p.m.11 views

CVE-2018-1000158

cmsmadesimple version 2.2.7 contains a Incorrect Access Control vulnerability in the function of sendrecoveryemail in the line "$url = $config'adminurl' . '/login.php?recoverme=' . $code;" that can result in Administrator Password Reset Poisoning, specifically a reset URL pointing at an attacker...

8.8CVSS8.7AI score0.01086EPSS
Exploits1References1
OSV
OSV
added 2018/04/18 7:29 p.m.4 views

CVE-2018-1000158

cmsmadesimple version 2.2.7 contains a Incorrect Access Control vulnerability in the function of sendrecoveryemail in the line "$url = $config'adminurl' . '/login.php?recoverme=' . $code;" that can result in Administrator Password Reset Poisoning, specifically a reset URL pointing at an attacker...

8.8CVSS5.8AI score0.01086EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/04/18 7:0 p.m.14 views

CVE-2018-1000158

cmsmadesimple version 2.2.7 contains a Incorrect Access Control vulnerability in the function of sendrecoveryemail in the line "$url = $config'adminurl' . '/login.php?recoverme=' . $code;" that can result in Administrator Password Reset Poisoning, specifically a reset URL pointing at an attacker...

8.7AI score0.01086EPSS
Exploits1References1
CVE
CVE
added 2018/04/18 7:0 p.m.44 views

CVE-2018-1000158

CMS Made Simple 2.2.7 has an Incorrect Access Control vulnerability in send_recovery_email that can create a reset URL pointing to an attacker-controlled server via a host header attack, enabling Administrator Password Reset Poisoning. Affected: cmsmadesimple 2.2.7. No explicit mitigations or pat...

8.8CVSS8.6AI score0.01086EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2017/01/31 10:59 p.m.2 views

CVE-2016-6285

Cross-site scripting XSS vulnerability in includes/decorators/global-translations.jsp in Atlassian JIRA before 7.2.2 allows remote attackers to inject arbitrary web script or HTML via the HTTP Host header...

6.1CVSS5.9AI score0.02111EPSS
Exploits3References5
Hacker One
Hacker One
added 2016/11/17 4:22 a.m.42 views

Boozt Fashion AB: Email link poisoning / Host header attack

Description ------------- It is possible to poison the link of the password reset email. This is generally done by altering the Host header, but in this case, the WAF is successfully blocking it. The trick here is to add an X-Forwarded-Host header in the request so the server is using this value...

6.9AI score
Exploits0
Rows per page
Query Builder