9 matches found
CVE-2024-1817
A vulnerability has been found in Demososo DM Enterprise Website Building System up to 2022.8 and classified as critical. Affected by this vulnerability is the function dmlogin of the file indexDMload.php of the component Cookie Handler. The manipulation of the argument isadmin with the input y...
CVE-2022-30620
On Cellinx Camera with guest enabled, attacker with web access can elevate privileges to administrative: "1" to "0" privileges by changing the following cookie values from "isadmin", "showConfig". Administrative Privileges which allows changing various configuration in the camera...
Merge + Minify + Refresh < 1.10.7 - Authenticated Arbitrary File Delete
The plugin relied on the isadmin check, without checking the user's capabilities, when deleting arbitrary files. The functionality was also vulnerable to Cross-site Request Forgery CSRF allowing attackers to delete arbitrary files by tricking authenticated users into visiting a page they...
Design/Logic Flaw
The modauthldap and modauthldap2 Community Modules through 2020-01-27 for Prosody incompletely verify the XMPP address passed to the isadmin function. This grants remote entities admin-only functionality if their username matches the username of a local admin...
CVE-2020-8086
The modauthldap and modauthldap2 Community Modules through 2020-01-27 for Prosody incompletely verify the XMPP address passed to the isadmin function. This grants remote entities admin-only functionality if their username matches the username of a local admin...
LiveChat <= 3.7.2 - Unauthenticated Option Update/Reset and Stored XSS
The lack of proper CSRF and Authorisation checks could allow an unauthenticated attacker to update or reset the plugin's settings. Furthermore, when updating the livechatemail option, no sanitisation is performed, leading to a Stored XSS issue in the plugin's settings page. CSRF and XSS fixed in...
Design/Logic Flaw
The Yuzo Related Posts plugin 5.12.94 for WordPress has XSS because it mistakenly expects that isadmin verifies that the request comes from an admin user it actually only verifies that the request is for an admin page. An unauthenticated attacker can inject a payload into the plugin settings, suc...
WordPress 'query.php' is_admin() Function Information Disclosure
The version of WordPress running on the remote web server is affected by an information disclosure vulnerability due to improper checks for administrative credentials by the isadmin function in 'wp-includes/query.php'. A remote attacker can exploit this, via a specially crafted URL containing the...
WordPress未授权帖子访问漏洞
WordPress是一款流行的博客程序。 WordPress不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞未授权读取之前发布的帖子。 问题是Wordpress信任$SERVER'REQUESTURI'全局变量,操作$SERVER'REQUESTURI'可导致多个跨站缺陷,虽然攻击者不能控制所有$SERVER变量,但也不能信任所有变量。 如: htttp://localhost/wordpress/'wp-admin/ 会导致$SERVER'REQUESTURI'和$SERVER'PHPSELF'包含如下值: htttp://localhost/wordpress/'wp-admi...