29 matches found
EUVD-2023-37011
Malicious code in bioql PyPI...
EUVD-2023-37013
Malicious code in bioql PyPI...
EUVD-2023-37012
Malicious code in bioql PyPI...
Cross-Site Request Forgery Vulnerability in NXLog Manager
NXLog Manager is a solution that can be used from a browser to easily manage and monitor a large number of NXLog Enterprise instances. NXLog Manager suffers from a cross-site request forgery vulnerability that can be exploited by a remote attacker to submit a specially crafted malicious request...
NXLog Manager Cross-Site Request Forgery Vulnerability
NXLog Manager is a solution that can be used from a browser to easily manage and monitor a large number of NXLog Enterprise instances. NXLog Manager suffers from a cross-site request forgery vulnerability that can be exploited by a remote attacker to submit a specially crafted malicious request...
CVE-2023-32790
Cross-Site Scripting XSS vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to inject a malicious JavaScript payload into the 'Full Name' field during a user edit, due to improper sanitization of the input parameter...
CVE-2023-32791
Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to manipulate and delete user accounts within the platform by sending a specifically crafted query to the server. The vulnerability is based on the lack of proper validation of t...
CVE-2023-32790
Cross-Site Scripting XSS vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to inject a malicious JavaScript payload into the 'Full Name' field during a user edit, due to improper sanitization of the input parameter...
CVE-2023-32792
Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to eliminate roles within the platform by sending a specifically crafted query to the server. The vulnerability is based on the absence of proper validation of the origin of...
CVE-2023-32792
Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to eliminate roles within the platform by sending a specifically crafted query to the server. The vulnerability is based on the absence of proper validation of the origin of...
CVE-2023-32791
Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to manipulate and delete user accounts within the platform by sending a specifically crafted query to the server. The vulnerability is based on the lack of proper validation of t...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to eliminate roles within the platform by sending a specifically crafted query to the server. The vulnerability is based on the absence of proper validation of the origin of...
Cross site scripting
Cross-Site Scripting XSS vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to inject a malicious JavaScript payload into the 'Full Name' field during a user edit, due to improper sanitization of the input parameter...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to manipulate and delete user accounts within the platform by sending a specifically crafted query to the server. The vulnerability is based on the lack of proper validation of t...
CVE-2023-32792 Cross-Site Request Forgery on NXLog Manager
Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to eliminate roles within the platform by sending a specifically crafted query to the server. The vulnerability is based on the absence of proper validation of the origin of...
CVE-2023-32792 Cross-Site Request Forgery on NXLog Manager
Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to eliminate roles within the platform by sending a specifically crafted query to the server. The vulnerability is based on the absence of proper validation of the origin of...
CVE-2023-32792
CVE-2023-32792: CSRF in NXLog Manager 5.6.5633 due to lack of origin validation in incoming requests. An attacker can cause the platform to eliminate roles via a crafted request. Verified in multiple sources (NVD/NVDC/CNVD, etc.). Exploitation details are not provided in the reports; no in‑the‑wi...
CVE-2023-32791 Cross-Site Request Forgery on NXLog Manager
Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to manipulate and delete user accounts within the platform by sending a specifically crafted query to the server. The vulnerability is based on the lack of proper validation of t...
CVE-2023-32791
NXLog Manager is affected by a CSRF vulnerability in version 5.6.5633. The issue arises from insufficient validation of request origin, enabling a remote attacker to manipulate and delete user accounts by sending a crafted query to the server. The CVE record lists a CVSS v3.1 base score of 6.5 (M...
CVE-2023-32791 Cross-Site Request Forgery on NXLog Manager
Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to manipulate and delete user accounts within the platform by sending a specifically crafted query to the server. The vulnerability is based on the lack of proper validation of t...