Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-3059

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.00686EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 4:15 p.m.8 views

CVE-2020-13157

modules\users\admin\edit.php in NukeViet 4.4 allows CSRF to change a user's password via an admin/index.php?nv=users=edit= URI. The old password is not needed...

6.5CVSS7AI score0.00569EPSS
Exploits1
OSV
OSV
added 2022/05/24 5:21 p.m.11 views

GHSA-7RW5-6PR4-FGH3 NukeViet Cross-Site Request Forgery (CSRF)

clearsystem.php in NukeViet 4.4 allows CSRF with resultant HTML injection via the deltype parameter to the admin/index.php?nv=webtools&op=clearsystem URI...

8.8CVSS8.8AI score0.00686EPSS
Exploits1References4
OSV
OSV
added 2022/05/24 5:21 p.m.13 views

GHSA-G3XF-85WC-45GQ NukeViet Cross-Site Request Forgery (CSRF)

modules\users\admin\edit.php in NukeViet 4.4 allows CSRF to change a user's password via an admin/index.php?nv=users&op=edit&userid= URI. The old password is not needed...

6.5CVSS6.5AI score0.00569EPSS
Exploits1References4
NVD
NVD
added 2020/06/23 8:15 p.m.9 views

CVE-2020-13155

clearsystem.php in NukeViet 4.4 allows CSRF with resultant HTML injection via the deltype parameter to the admin/index.php?nv=webtools&op=clearsystem URI...

8.8CVSS0.00686EPSS
Exploits1References2
NVD
NVD
added 2020/06/23 8:15 p.m.10 views

CVE-2020-13157

modules\users\admin\edit.php in NukeViet 4.4 allows CSRF to change a user's password via an admin/index.php?nv=users&op=edit&userid= URI. The old password is not needed...

6.5CVSS0.00569EPSS
Exploits1References2
OSV
OSV
added 2020/06/23 8:15 p.m.3 views

CVE-2020-13157

modules\users\admin\edit.php in NukeViet 4.4 allows CSRF to change a user's password via an admin/index.php?nv=users&op=edit&userid= URI. The old password is not needed...

6.5CVSS6.6AI score0.00569EPSS
Exploits1References2
Prion
Prion
added 2020/06/23 8:15 p.m.13 views

Cross site request forgery (csrf)

clearsystem.php in NukeViet 4.4 allows CSRF with resultant HTML injection via the deltype parameter to the admin/index.php?nv=webtools&op=clearsystem URI...

6.8CVSS8.7AI score0.00686EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2020/06/23 8:15 p.m.20 views

Cross site request forgery (csrf)

modules\users\admin\adduser.php in NukeViet 4.4 allows CSRF to add a user account via the admin/index.php?nv=users&op=useradd URI...

4.3CVSS6.4AI score0.00569EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/06/23 7:15 p.m.15 views

CVE-2020-13155

clearsystem.php in NukeViet 4.4 allows CSRF with resultant HTML injection via the deltype parameter to the admin/index.php?nv=webtools&op=clearsystem URI...

8.8AI score0.00686EPSS
Exploits1References2
CVE
CVE
added 2020/06/23 7:14 p.m.61 views

CVE-2020-13156

CVE-2020-13156 affects NukeViet 4.4: the vulnerability lies in modules\users\admin\add_user.php, where CSRF can be abused to add a new user via admin/index.php?nv=users&op=user_add. Exploitation is documented in public advisories (e.g., GitHub GHSA, OSV, Red Hat) and CVSS indicates network access...

6.5CVSS6.3AI score0.00569EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/06/23 7:11 p.m.18 views

CVE-2020-13157

modules\users\admin\edit.php in NukeViet 4.4 allows CSRF to change a user's password via an admin/index.php?nv=users&op=edit&userid= URI. The old password is not needed...

6.5AI score0.00569EPSS
Exploits1References2
Rows per page
Query Builder