CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-0086

Malware in sbrugna...

8.8CVSS8.6AI score0.00134EPSS

Exploits1References6

RedhatCVE•added 2025/05/22 7:48 a.m.•3 views

CVE-2018-9856

Kotti before 1.3.2 and 2.x before 2.0.0b2 has CSRF in the local roles implementation, as demonstrated by triggering a permission change via a /admin-document/@@share request...

8.8CVSS6.6AI score0.00134EPSS

Exploits1References1

Github Security Blog•added 2018/07/12 8:30 p.m.•27 views

Kotti CSRF in the local roles implementation

Kotti before 1.3.2 and 2.x before 2.0.0b2 has CSRF in the local roles implementation, as demonstrated by triggering a permission change via a /admin-document/@@share request...

8.8CVSS8.1AI score0.00134EPSS

Exploits1References5Affected Software1

OSV•added 2018/07/12 8:30 p.m.•13 views

GHSA-3HQ4-F2V6-Q338 Kotti CSRF in the local roles implementation

Kotti before 1.3.2 and 2.x before 2.0.0b2 has CSRF in the local roles implementation, as demonstrated by triggering a permission change via a /admin-document/@@share request...

8.8CVSS8.4AI score0.00134EPSS

Exploits1References6

OSV•added 2018/04/09 7:29 a.m.•13 views

CVE-2018-9856

Kotti before 1.3.2 and 2.x before 2.0.0b2 has CSRF in the local roles implementation, as demonstrated by triggering a permission change via a /admin-document/@@share request...

8.8CVSS7AI score

Exploits0References1

OSV•added 2018/04/09 7:29 a.m.•19 views

PYSEC-2018-10

Kotti before 1.3.2 and 2.x before 2.0.0b2 has CSRF in the local roles implementation, as demonstrated by triggering a permission change via a /admin-document/@@share request...

8.8CVSS4AI score0.00134EPSS

Exploits1References2

NVD•added 2018/04/09 7:29 a.m.•8 views

CVE-2018-9856

Kotti before 1.3.2 and 2.x before 2.0.0b2 has CSRF in the local roles implementation, as demonstrated by triggering a permission change via a /admin-document/@@share request...

8.8CVSS8.5AI score0.00134EPSS

Exploits1References1

PyPA•added 2018/04/09 7:29 a.m.•3 views

PYSEC-2018-10

Kotti before 1.3.2 and 2.x before 2.0.0b2 has CSRF in the local roles implementation, as demonstrated by triggering a permission change via a /admin-document/@@share request...

8.8CVSS6.7AI score0.00134EPSS

Exploits1References2Affected Software1

Prion•added 2018/04/09 7:29 a.m.•13 views

Cross site request forgery (csrf)

Kotti before 1.3.2 and 2.x before 2.0.0b2 has CSRF in the local roles implementation, as demonstrated by triggering a permission change via a /admin-document/@@share request...

6.8CVSS8.4AI score0.00134EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/04/09 7:0 a.m.•10 views

CVE-2018-9856

Kotti before 1.3.2 and 2.x before 2.0.0b2 has CSRF in the local roles implementation, as demonstrated by triggering a permission change via a /admin-document/@@share request...

8.5AI score0.00134EPSS

Exploits1References1

CVE•added 2018/04/09 7:0 a.m.•59 views

CVE-2018-9856

Kotti vulnerability CVE-2018-9856 affects Kotti before 1.3.2 and 2.x before 2.0.0b2. The issue is CSRF in the local roles implementation, demonstrated by triggering a permission change via the /admin-document/@@share request. The connected sources explicitly identify the vulnerable component as t...

8.8CVSS8.3AI score0.00134EPSS

Exploits1References1Affected Software1

CNVD•added 2018/04/09 12:0 a.m.•1 views

Kotti Cross-Site Request Forgery Vulnerability

Kotti is a Pythonic Web application framework based on Pyramid and SQLAlchemy , which includes a set of scalable content management system . A cross-site request forgery vulnerability exists in the local role implementation in Kotti versions prior to 1.3.2 and 2.x versions prior to 2.0.0b2. A...

8.8CVSS6.6AI score0.00134EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by