CVE-2022-23904

Rainworx Auctionworx 3.1R2 is vulnerable to a Cross-Site Request Forgery CSRF attack that allows an authenticated user to upgrade his account to admin and gain access to the auctionworx admin control panel. This vulnerability affects AuctionWorx Enterprise and AuctionWorx: Events Edition...

CVE-2022-23904

Rainworx Auctionworx 3.1R2 is vulnerable to a Cross-Site Request Forgery CSRF attack that allows an authenticated user to upgrade his account to admin and gain access to the auctionworx admin control panel. This vulnerability affects AuctionWorx Enterprise and AuctionWorx: Events Edition...

CVE-2022-23904

The CVE-2022-23904 entry describes a CSRF vulnerability in Rainworx Auctionworx prior to 3.1R2. Affected product version(s) allow an authenticated user to upgrade their own account to admin, enabling access to the Auctionworx admin control panel (Enterprise and Events Edition). Root cause is CSRF...

Rainworx Auctionworx 跨站请求伪造漏洞

Rainworx Auctionworx is an online auction software. A security vulnerability previously existed in Rainworx Auctionworx version 3.1R2 that allowed authenticated users to upgrade their account to administrator and gain access to the Auctionworx administrator control panel, resulting in a cross-sit...

rwAUCTION PRO 7.0 CSRF Vulnerability (Add Admin)

Exploit for php platform in category web applications rwAUCTION PRO 7.0 CSRF Vulnerability Add Admin ==================================================================== .:. Author : AtT4CKxT3rR0r1ST email protected .:. Script : http://www.rainworx.com/Auction-Software .:. Tested On Demo :...