Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/11/11 3:47 a.m.16 views

CVE-2025-12868

New Site Server developed by CyberTutor has a Use of Client-Side Authentication vulnerability, allowing unauthenticated remote attackers to modify the frontend code to gain administrator privileges on the website...

9.8CVSS7.4AI score0.0048EPSS
Exploits0References1
NVD
NVD
added 2025/11/10 4:15 a.m.6 views

CVE-2025-12868

New Site Server developed by CyberTutor has a Use of Client-Side Authentication vulnerability, allowing unauthenticated remote attackers to modify the frontend code to gain administrator privileges on the website...

9.8CVSS0.0048EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/10 3:14 a.m.2 views

CVE-2025-12868 CyberTutor|New Site Server - Use of Client-Side Authentication

New Site Server developed by CyberTutor has a Use of Client-Side Authentication vulnerability, allowing unauthenticated remote attackers to modify the frontend code to gain administrator privileges on the website...

9.8CVSS7.1AI score0.0048EPSS
Exploits0References2
CVE
CVE
added 2025/11/10 3:14 a.m.17 views

CVE-2025-12868

CVE-2025-12868 : The vulnerability affects CyberTutor’s New Site Server. Affected component is the client-side authentication mechanism, where unauthenticated remote attackers can modify frontend code and potentially gain administrator privileges on the website. Documented impact includes full ad...

9.8CVSS7.1AI score0.0048EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/10 3:14 a.m.14 views

CVE-2025-12868 CyberTutor|New Site Server - Use of Client-Side Authentication

New Site Server developed by CyberTutor has a Use of Client-Side Authentication vulnerability, allowing unauthenticated remote attackers to modify the frontend code to gain administrator privileges on the website...

9.8CVSS0.0048EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/10 3:14 a.m.5 views

EUVD-2025-41750

New Site Server developed by CyberTutor has a Use of Client-Side Authentication vulnerability, allowing unauthenticated remote attackers to modify the frontend code to gain administrator privileges on the website...

9.8CVSS7AI score0.0048EPSS
Exploits0References3
WPVulnDB
WPVulnDB
added 2022/03/29 12:0 a.m.20 views

Flo Launch < 2.4.1 - Missing Authentication Allow Full Site Takeover

The plugin injects code into wp-config.php when creating a cloned site, allowing any attacker to initiate a new site install by setting the flocustomtableprefix cookie to an arbitrary value. PoC On any website where flo-launch is active create cookie "flocustomtableprefix" with any string value t...

9.8CVSS3.7AI score0.01698EPSS
Exploits2Affected Software1
Openbugbounty
Openbugbounty
added 2018/01/15 5:29 a.m.9 views

lipacitycolleges.edu.ph XSS vulnerability

Open Bug Bounty ID: OBB-522718 Description| Value ---|--- Affected Website:| lipacitycolleges.edu.ph Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated...

6.4AI score
Exploits0
ThreatPost
ThreatPost
added 2011/05/20 2:12 p.m.12 views

Fake Apple Store Emails Redirect to New WikiPharmacy

Fake Apple Store order notification emails floating around the Web right now are redirecting to a new site pushing the same old familiar list of discount read: fake pharmaceuticals. Similar scams have been going on for months now. They typically redirect to a relatively familiar pharmacy page...

6.9AI score
Exploits0References5
Exploit DB
Exploit DB
added 2009/09/25 12:0 a.m.28 views

CuteFTP 8.3.3 - &#039;create new site&#039; Local Buffer Overflow (PoC)

!/usr/bin/env python CuteFTP v8.3.3 Home/Pro/Lite Create New Site Local Buffer Overflow PoC Found By: DrIDE Download: http://www.cuteftp.com/downloads/ Tested On: Windows 7 RC, XP might be more shell friendly Notes: This PoC exploits the "Create New Site" mechanism. Any site type that you pick wi...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2006/11/12 12:0 a.m.76 views

Gene6 FTP Server本地权限提升漏洞

Gene6 FTP Server是一款非常流行的Microsoft Windows平台的FTP Server。 默认安装后,本地的非特权用户可以修改Gene6 FTP Server的设置,例如添加新的SITE命令。由于Gene6 FTP Server是以SYSTEM权限运行的,因此攻击者可以轻易的提升权限。 Gene6 G6 FTP Server http://marc.theaimsgroup.com 1. 以非特权用户的身份登陆。 2. 打开Gene6 FTP Server控制台,添加FTP用户帐号,如“test” 3. 对FTP...

7.1AI score
Exploits0
Rows per page
Query Builder