Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:3 a.m.5 views

CVE-2019-12890

RedwoodHQ 2.5.5 does not require any authentication for database operations, which allows remote attackers to create admin users via a con.automationframework users insertone call...

9.8CVSS7.3AI score0.06223EPSS
Exploits1References1
CNVD
CNVD
added 2019/06/20 12:0 a.m.4 views

RedwoodHQ Bypass Authentication Vulnerability

RedwoodHQ is an open source automated testing framework. The product supports programming languages such as Java, Groovy, Python and C and is capable of creating readable keyword-driven test cases. A security vulnerability exists in RedwoodHQ version 2.5.5. The vulnerability stems from a lack of...

9.8CVSS7.1AI score0.06223EPSS
Exploits1References1
NVD
NVD
added 2019/06/19 6:15 p.m.15 views

CVE-2019-12890

RedwoodHQ 2.5.5 does not require any authentication for database operations, which allows remote attackers to create admin users via a con.automationframework users insertone call...

9.8CVSS9.5AI score0.06223EPSS
Exploits1References2
OSV
OSV
added 2019/06/19 6:15 p.m.3 views

CVE-2019-12890

RedwoodHQ 2.5.5 does not require any authentication for database operations, which allows remote attackers to create admin users via a con.automationframework users insertone call...

9.8CVSS7.4AI score0.06223EPSS
Exploits1References2
Prion
Prion
added 2019/06/19 6:15 p.m.20 views

Authentication flaw

RedwoodHQ 2.5.5 does not require any authentication for database operations, which allows remote attackers to create admin users via a con.automationframework users insertone call...

7.5CVSS9.4AI score0.06223EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/06/19 6:0 p.m.14 views

CVE-2019-12890

RedwoodHQ 2.5.5 does not require any authentication for database operations, which allows remote attackers to create admin users via a con.automationframework users insertone call...

9.5AI score0.06223EPSS
Exploits1References2
CVE
CVE
added 2019/06/19 6:0 p.m.72 views

CVE-2019-12890

RedwoodHQ 2.5.5 is affected by an authentication bypass in its database operations. The root cause is a lack of authentication for certain database actions, enabling remote attackers to insert admin users via the con.automationframework users insert_one call. As described across multiple sources,...

9.8CVSS9.4AI score0.06223EPSS
Exploits1References2Affected Software1
0day.today
0day.today
added 2019/06/18 12:0 a.m.253 views

RedwoodHQ 2.5.5 - Authentication Bypass Vulnerability

Exploit for multiple platform in category web applications -- encoding: utf-8 -- !/usr/bin/python3 Exploit Title: RedxploitHQ Create Admin User by missing authentication on db Date: 14-june-2019 Exploit Author: EthicalHCOP Version: 2.0 / 2.5.5 Vendor Homepage: https://redwoodhq.com/ Software Link...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/06/17 12:0 a.m.338 views

RedwoodHQ 2.5.5 - Authentication Bypass

-- encoding: utf-8 -- !/usr/bin/python3 Exploit Title: RedxploitHQ Create Admin User by missing authentication on db Date: 14-june-2019 Exploit Author: EthicalHCOP Version: 2.0 / 2.5.5 Vendor Homepage: https://redwoodhq.com/ Software Link: https://redwoodhq.com/redwood-download/ Tested on: Ubuntu...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2019/06/17 12:0 a.m.20 views

RedwoodHQ 2.5.5 - Authentication Bypass

RedwoodHQ 2.5.5 - Authentication Bypass -- encoding: utf-8 -- !/usr/bin/python3 Exploit Title: RedxploitHQ Create Admin User by missing authentication on db Date: 14-june-2019 Exploit Author: EthicalHCOP Version: 2.0 / 2.5.5 Vendor Homepage: https://redwoodhq.com/ Software Link:...

1AI score
Exploits0
Packet Storm
Packet Storm
added 2019/06/16 12:0 a.m.80 views

RedwoodHQ 2.5.5 Authentication Bypass

-- encoding: utf-8 -- !/usr/bin/python3 Exploit Title: RedxploitHQ Create Admin User by missing authentication on db Date: 14-june-2019 Exploit Author: EthicalHCOP Version: 2.0 / 2.5.5 Vendor Homepage: https://redwoodhq.com/ Software Link: https://redwoodhq.com/redwood-download/ Tested on: Ubuntu...

1AI score
Exploits0
Rows per page
Query Builder