Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2011-5198

Malware in sbrugna...

4.3CVSS6.4AI score0.00966EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 5:25 a.m.8 views

CVE-2011-5300

Cross-site request forgery CSRF vulnerability in admin/setup/config/users.php in poMMo Aardvark PR16.1 allows remote attackers to hijack the authentication of administrators for requests that modify credentials via certain admin parameters...

6.8CVSS7.5AI score0.00609EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:55 a.m.12 views

CVE-2011-5299

Multiple cross-site scripting XSS vulnerabilities in poMMo Aardvark PR16.1 allow remote attackers to inject arbitrary web script or HTML via 1 the referer parameter to index.php, 2 the sitename parameter to admin/setup/config/general.php, 3 the groupname parameter to...

4.3CVSS6AI score0.00966EPSS
Exploits1References1
CNVD
CNVD
added 2015/01/08 12:0 a.m.6 views

poMMo Aardvark Cross-Site Request Forgery Vulnerability

poMMo Aardvark is a PHP-based mass mailing software. A cross-site request forgery vulnerability exists in poMMo Aardvark PR16.1, which allows remote attackers to hijack administrative authentication by hijacking request authentication of administrars modifying credentials via certain admin...

6.8CVSS7.2AI score0.00609EPSS
Exploits1References1
CNVD
CNVD
added 2015/01/08 12:0 a.m.15 views

Multiple Cross-Site Scripting Vulnerabilities in poMMo Aardvark

poMMo Aardvark is a PHP-based mass mailing software. poMMo Aardvark PR16.1 suffers from multiple cross-site scripting vulnerabilities that allow remote attackers to send mass emails via 1 the referer parameter to index.php, 2 the sitename parameter to admin/setup/config/general.php, 3 the groupna...

4.3CVSS6.4AI score0.00966EPSS
Exploits1References1
NVD
NVD
added 2015/01/01 11:59 a.m.18 views

CVE-2011-5300

Cross-site request forgery CSRF vulnerability in admin/setup/config/users.php in poMMo Aardvark PR16.1 allows remote attackers to hijack the authentication of administrators for requests that modify credentials via certain admin parameters...

6.8CVSS7.1AI score0.00609EPSS
Exploits1References1
NVD
NVD
added 2015/01/01 11:59 a.m.21 views

CVE-2011-5299

Multiple cross-site scripting XSS vulnerabilities in poMMo Aardvark PR16.1 allow remote attackers to inject arbitrary web script or HTML via 1 the referer parameter to index.php, 2 the sitename parameter to admin/setup/config/general.php, 3 the groupname parameter to...

4.3CVSS5.8AI score0.00966EPSS
Exploits1References1
Prion
Prion
added 2015/01/01 11:59 a.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in poMMo Aardvark PR16.1 allow remote attackers to inject arbitrary web script or HTML via 1 the referer parameter to index.php, 2 the sitename parameter to admin/setup/config/general.php, 3 the groupname parameter to...

4.3CVSS6.1AI score0.00966EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2015/01/01 11:59 a.m.15 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in admin/setup/config/users.php in poMMo Aardvark PR16.1 allows remote attackers to hijack the authentication of administrators for requests that modify credentials via certain admin parameters...

6.8CVSS7.6AI score0.00609EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2015/01/01 11:0 a.m.22 views

CVE-2011-5299

Multiple cross-site scripting XSS vulnerabilities in poMMo Aardvark PR16.1 allow remote attackers to inject arbitrary web script or HTML via 1 the referer parameter to index.php, 2 the sitename parameter to admin/setup/config/general.php, 3 the groupname parameter to...

5.8AI score0.00966EPSS
Exploits1References1
Cvelist
Cvelist
added 2015/01/01 11:0 a.m.26 views

CVE-2011-5300

Cross-site request forgery CSRF vulnerability in admin/setup/config/users.php in poMMo Aardvark PR16.1 allows remote attackers to hijack the authentication of administrators for requests that modify credentials via certain admin parameters...

7.1AI score0.00609EPSS
Exploits1References1
CVE
CVE
added 2015/01/01 11:0 a.m.60 views

CVE-2011-5300

CVE-2011-5300 affects poMMo Aardvark PR16.1. a CSRF in admin/setup/config/users.php allows remote attackers to hijack administrator authentication by submitting requests that modify credentials via certain admin_ parameters. Root cause is a CSRF in the credential-modification flow. Impact describ...

6.8CVSS7.3AI score0.00609EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2015/01/01 11:0 a.m.46 views

CVE-2011-5299

poMMo Aardvark PR16.1 is affected by multiple cross-site scripting (XSS) vulnerabilities allowing remote attackers to inject arbitrary web script or HTML via four parameters: referer (index.php), site_name (admin/setup/config/general.php), group_name (admin/subscribers/subscribers_groups.php), an...

4.3CVSS5.9AI score0.00966EPSS
Exploits1References1Affected Software1
Packet Storm
Packet Storm
added 2011/10/28 12:0 a.m.58 views

poMMo Aardvark PR16.1 Cross Site Scripting

Hello list! I want to warn you about multiple security vulnerabilities in poMMo. These are Cross-Site Scripting, Brute Force and Insufficient Anti-automation vulnerabilities. ------------------------- Affected products: ------------------------- Vulnerable are all versions of poMMo poMMo Aardvark...

7.4AI score
Exploits0
Rows per page
Query Builder