CVE-2023-37261 OpenComputers's SSRF to cloud service metadata services and local IPv6 addresses not blocked by default

OpenComputers is a Minecraft mod that adds programmable computers and robots to the game. This issue affects every version of OpenComputers with the Internet Card feature enabled; that is, OpenComputers 1.2.0 until 1.8.3 in their most common, default configurations. If the OpenComputers mod is...

Forma LMS <= 3.1.0 Multiple Vulnerabilities

Forma LMS is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation...

CVE-2022-42925

There is a vulnerability on Forma LMS version 3.1.0 and earlier that could allow an authenticated attacker with the role of student to privilege escalate in order to upload a Zip file through the plugin upload component. The exploitation of this vulnerability could lead to a remote code injection...

CVE-2022-41681

There is a vulnerability on Forma LMS version 3.1.0 and earlier that could allow an authenticated attacker with the role of student to privilege escalate in order to upload a Zip file through the SCORM importer feature. The exploitation of this vulnerability could lead to a remote code injection...

CVE-2022-42925 Unrestricted Upload of File with Dangerous Type in Forma LMS

There is a vulnerability on Forma LMS version 3.1.0 and earlier that could allow an authenticated attacker with the role of student to privilege escalate in order to upload a Zip file through the plugin upload component. The exploitation of this vulnerability could lead to a remote code injection...

CVE-2022-42925

CVE-2022-42925 affects Forma LMS 3.1.0 and earlier. An authenticated user with the student role can privilege-escalate via the plugin upload component to upload a ZIP file, which could lead to remote code execution. Public documentation lists this CVE with high/critical impact (CVSS/CRITICAL) and...

CryptSetup Ubuntu 16.4 CVE2016-4484 - Privilege Escalate

Document Title: =============== CryptSetup Ubuntu 16.4 CVE2016-4484 - Privilege Escalate References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2014 Video: https://www.youtube.com/watch?v=81Qam91pRoE Credits:...

CryptSetup Ubuntu 16.4 CVE2016-4484 - Privilege Escalate

Document Title: =============== CryptSetup Ubuntu 16.4 CVE2016-4484 - Privilege Escalate References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2014 Video: https://www.youtube.com/watch?v=81Qam91pRoE Credits:...

EditMe CMS - CSRF Privilege Escalate Web Vulnerability

Document Title: =============== EditMe CMS - CSRF Privilege Escalate Web Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1996 Release Date: ============= 2016-11-14 Vulnerability Laboratory ID VL-ID: ==================================== 19...

CMS EditMe Cross Site Request Forgery Vulnerability

CMS EditMe suffers from cross site request forgery vulnerability that allows for privilege escalation. ===================================================== Exploit Title : CMS EditMe - Privilege Escalate CSRF Vulnerability Date Discovered : 2016-11-04 Affected Products: EditMe - Content Manageme...

EditMe CMS - CSRF Privilege Escalate Web Vulnerability

Document Title: =============== EditMe CMS - CSRF Privilege Escalate Web Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1996 Release Date: ============= 2016-11-14 Vulnerability Laboratory ID VL-ID: ==================================== 19...

CMS EditMe Cross Site Request Forgery

===================================================== Exploit Title : CMS EditMe - Privilege Escalate CSRF Vulnerability Date Discovered : 2016-11-04 Affected Products: EditMe - Content Management System Exploitation Technique: Remote Severity Level: Medium Tested OS : Windows 10...

Jaws CMS v1.1.1 - Privilege Escalate CSRF Vulnerability

Product & Service Introduction: =============================== Jaws is a Framework and Content Management System for building dynamic web sites. It aims to be User Friendly giving ease of use and lots of ways to customize web sites, but at the same time is Developer Friendly, it offers a simple...

Jaws CMS v1.1.1 - Privilege Escalate CSRF Vulnerability

Document Title: =============== Jaws CMS v1.1.1 - Privilege Escalate CSRF Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1923 Release Date: ============= 2016-09-08 Vulnerability Laboratory ID VL-ID: ==================================== 19...

Jaws CMS 1.1.1 Cross Site Request Forgery

Document Title: =============== Jaws CMS v1.1.1 - Privilege Escalate CSRF Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1923 Release Date: ============= 2016-08-22 Vulnerability Laboratory ID VL-ID: ==================================== 19...

phpCollab CMS 2.5 Cross Site Request Forgery

Document Title: =============== phpCollab v2.5 CMS - Privilege Escalate CSRF Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1911 Release Date: ============= 2016-08-17 Vulnerability Laboratory ID VL-ID: ====================================...

phpCollab v2.5 CMS - Privilege Escalate CSRF Vulnerability

Document Title: =============== phpCollab v2.5 CMS - Privilege Escalate CSRF Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1911 Release Date: ============= 2016-08-16 Vulnerability Laboratory ID VL-ID: ====================================...

Teampass v2.1.26 - Privilege Escalate Vulnerability

Document Title: =============== Teampass v2.1.26 - Privilege Escalate Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1859 Release Date: ============= 2016-07-04 Vulnerability Laboratory ID VL-ID: ==================================== 1859...