Lucene search
K

15 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:24 a.m.15 views

CVE-2019-10276

Western Bridge Cobub Razor 0.8.0 has a file upload vulnerability via the web/assets/swf/uploadify.php URI, as demonstrated by a .php file with the image/jpeg content type...

9.8CVSS7AI score0.01797EPSS
Exploits1References1
NVD
NVD
added 2024/03/25 11:15 p.m.23 views

CVE-2024-28421

SQL Injection vulnerability in Razor 0.8.0 allows a remote attacker to escalate privileges via the ChannelModel::updateapk method of the channelmodle.php...

9.8CVSS7.9AI score0.0083EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/03/25 12:0 a.m.11 views

CVE-2024-28421

SQL Injection vulnerability in Razor 0.8.0 allows a remote attacker to escalate privileges via the ChannelModel::updateapk method of the channelmodle.php...

8.7AI score0.0083EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/03/25 12:0 a.m.23 views

CVE-2024-28421

SQL Injection vulnerability in Razor 0.8.0 allows a remote attacker to escalate privileges via the ChannelModel::updateapk method of the channelmodle.php...

8.2AI score0.0083EPSS
Exploits1References2
CVE
CVE
added 2024/03/25 12:0 a.m.54 views

CVE-2024-28421

CVE-2024-28421 affects Razor 0.8.0. The vulnerability is a SQL Injection in ChannelModel::updateapk within channelmodle.php, which could let a remote attacker escalate privileges. In confirmed third-party sources, mitigation guidance for Razor v0.8.0 includes disabling the ChannelModel::updateapk...

9.8CVSS8.3AI score0.0083EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2019/03/29 7:29 a.m.15 views

Privilege escalation

Western Bridge Cobub Razor 0.8.0 has a file upload vulnerability via the web/assets/swf/uploadify.php URI, as demonstrated by a .php file with the image/jpeg content type...

7.5CVSS9.4AI score0.01797EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2019/03/29 7:29 a.m.24 views

CVE-2019-10276

Western Bridge Cobub Razor 0.8.0 has a file upload vulnerability via the web/assets/swf/uploadify.php URI, as demonstrated by a .php file with the image/jpeg content type...

9.8CVSS9.5AI score0.01797EPSS
Exploits1References2
exploitpack
exploitpack
added 2018/04/16 12:0 a.m.53 views

Cobub Razor 0.8.0 - SQL injection

Cobub Razor 0.8.0 - SQL injection Exploit Title: Cobub Razor 0.8.0 SQL injection Vulnerability Date: 2018-04-16 Exploit Author: Kyhvedn([email protected][email protected]) Vendor Homepage: http://www.cobub.com/ Software Link: https://github.com/cobub/razor Version: 0.8.0 CVE : CVE-2018-80...

7.5CVSS0.3AI score0.22979EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/04/16 12:0 a.m.48 views

Cobub Razor 0.8.0 - SQL injection

Exploit Title: Cobub Razor 0.8.0 SQL injection Vulnerability Date: 2018-04-16 Exploit Author: Kyhvedn([email protected][email protected]) Vendor Homepage: http://www.cobub.com/ Software Link: https://github.com/cobub/razor Version: 0.8.0 CVE : CVE-2018-8057 The string of the 'channelname'...

9.8CVSS9.5AI score0.22979EPSS
Exploits5
Prion
Prion
added 2018/03/18 6:29 a.m.17 views

Design/Logic Flaw

Physical path Leakage exists in Western Bridge Cobub Razor 0.8.0 via generate.php, controllers/getConfigTest.php, controllers/getUpdateTest.php, controllers/postclientdataTest.php, controllers/posterrorTest.php, controllers/posteventTest.php, controllers/posttagTest.php,...

5CVSS5.2AI score0.60586EPSS
Exploits5References2Affected Software1
OSV
OSV
added 2018/03/18 6:29 a.m.21 views

CVE-2018-8770

Physical path Leakage exists in Western Bridge Cobub Razor 0.8.0 via generate.php, controllers/getConfigTest.php, controllers/getUpdateTest.php, controllers/postclientdataTest.php, controllers/posterrorTest.php, controllers/posteventTest.php, controllers/posttagTest.php,...

5.3CVSS7.1AI score
Exploits0References2
Cvelist
Cvelist
added 2018/03/18 6:0 a.m.15 views

CVE-2018-8770

Physical path Leakage exists in Western Bridge Cobub Razor 0.8.0 via generate.php, controllers/getConfigTest.php, controllers/getUpdateTest.php, controllers/postclientdataTest.php, controllers/posterrorTest.php, controllers/posteventTest.php, controllers/posttagTest.php,...

5.2AI score0.60586EPSS
Exploits5References2
CVE
CVE
added 2018/03/18 6:0 a.m.83 views

CVE-2018-8770

Cobub Razor 0.8.0 is affected by CVE-2018-8770, a physical path leakage information disclosure. The issue arises via multiple test-related PHP files and fixtures (e.g., generate.php, controllers/getConfigTest.php, controllers/getUpdateTest.php, controllers/postclientdataTest.php, controllers/post...

5.3CVSS5.2AI score0.60586EPSS
Exploits5References2Affected Software1
Prion
Prion
added 2018/03/11 6:29 p.m.16 views

Design/Logic Flaw

Physical path Leakage exists in Western Bridge Cobub Razor 0.8.0 via an invalid channelname parameter to /index.php?/manage/channel/addchannel or a direct request to /export.php...

5CVSS7.5AI score0.13424EPSS
Exploits2References3Affected Software1
CVE
CVE
added 2018/03/11 6:0 p.m.47 views

CVE-2018-8056

CVE-2018-8056 affects Cobub Razor 0.8.0. The vulnerability is a physical path leakage caused by an invalid channel_name parameter to /index.php?/manage/channel/addchannel or a direct request to /export.php, exposing internal file paths that could aid information disclosure. Connected references i...

7.5CVSS7.4AI score0.13424EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder