Lucene search
K

8 matches found

NVD
NVD
added 2026/06/17 2:18 p.m.11 views

CVE-2026-9591

Cross-site request forgery CSRF in NewsItemApiController in SimplCommerce prior to commit 6233d73e allows an unauthenticated remote attacker to create or modify news items as an administrator via a crafted form submitted to /api/news-items, due to missing anti-CSRF protection...

6.9CVSS0.00197EPSS
Exploits0References2
CVE
CVE
added 2026/06/17 1:41 p.m.36 views

CVE-2026-9591

CVE-2026-9591 documents a CSRF vulnerability in the SimplCommerce News module. The issue is in the NewsItemApiController and allows an unauthenticated remote attacker to create or modify news items as an administrator by submitting a crafted form to /api/news-items, due to missing anti-CSRF prote...

6.9CVSS5.4AI score0.00197EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/17 1:41 p.m.8 views

EUVD-2026-37710

Cross-site request forgery CSRF in NewsItemApiController in SimplCommerce prior to commit 6233d73e allows an unauthenticated remote attacker to create or modify news items as an administrator via a crafted form submitted to /api/news-items, due to missing anti-CSRF protection...

8.3CVSS5.4AI score0.00197EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/17 1:41 p.m.28 views

CVE-2026-9591 Cross-Site Request Forgery (CSRF) in SimplCommerce News Module

Cross-site request forgery CSRF in NewsItemApiController in SimplCommerce prior to commit 6233d73e allows an unauthenticated remote attacker to create or modify news items as an administrator via a crafted form submitted to /api/news-items, due to missing anti-CSRF protection...

6.9CVSS0.00197EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-5251

Malware in sbrugna...

5CVSS6.4AI score0.02142EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-6563

Malware in sbrugna...

6.4CVSS6.4AI score0.01076EPSS
Exploits0References3
Veracode
Veracode
added 2025/09/25 5:59 a.m.7 views

Improper Access Control

contao/contao is vulnerable to Improper Access Control. The vulnerability is due to news feeds not filtering protected news archives, which allows an attacker to access and view restricted news items through the public RSS feed...

5.3CVSS6.7AI score0.00281EPSS
Exploits0References5Affected Software2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

UtilMind Solutions Site News 1.1 Authentication Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11126/info Reportedly UtilMind Solutions Site News is affected by an authentication bypass vulnerability. This issue is due to an access validation error. An unauthenticated attacker can leverage this issue to display and...

7.1AI score
Exploits0
Rows per page
Query Builder