CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/05/23 4:27 a.m.•6 views

CVE-2023-44161

Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 Linux, Windows before build 35979...

6.5CVSS6.6AI score0.00239EPSS

Cvelist•added 2024/10/15 10:34 a.m.•15 views

CVE-2024-49388

Sensitive information manipulation due to improper authorization. The following products are affected: Acronis Cyber Protect 16 Linux, Windows before build 38690...

3.1CVSS0.0026EPSS

ATTACKERKB•added 2023/09/27 3:19 p.m.•1 views

CVE-2023-44161

Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 Linux, Windows before build 35979...

6.5CVSS5.6AI score0.00239EPSS

Exploits0References2

NVD•added 2023/09/27 3:19 p.m.•8 views

CVE-2023-44160

Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 Linux, Windows before build 35979...

6.5CVSS4.6AI score0.00239EPSS

NVD•added 2023/09/27 3:19 p.m.•14 views

CVE-2023-44161

Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 Linux, Windows before build 35979...

6.5CVSS4.6AI score0.00239EPSS

Prion•added 2023/09/27 3:19 p.m.•13 views

Cross site request forgery (csrf)

Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 Linux, Windows before build 35979...

2.6CVSS6.3AI score0.00239EPSS

CVE•added 2023/09/27 12:1 p.m.•43 views

CVE-2023-44161

CVE-2023-44161 affects Acronis Cyber Protect 15 (Linux, Windows) prior to build 35979. The vulnerability is described as sensitive information manipulation via cross-site request forgery (CSRF). According to the available documents, the exploit details are not provided, and exploitation status is...

6.5CVSS4AI score0.00239EPSS

Vulnrichment•added 2023/09/27 12:1 p.m.•12 views

CVE-2023-44160

Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 Linux, Windows before build 35979...

3.1CVSS6.6AI score0.00239EPSS

CVE•added 2023/09/27 12:1 p.m.•50 views

CVE-2023-44160

CVE-2023-44160 describes a cross-site request forgery in Acronis Cyber Protect 15 (Linux and Windows) before build 35979 that leads to sensitive information manipulation. The connected sources corroborate the affected product and version range, with remediation guidance to update to build 35979 o...

6.5CVSS4AI score0.00239EPSS

NVD•added 2023/08/24 6:15 a.m.•9 views

CVE-2023-4227

A vulnerability has been identified in the ioLogik 4000 Series ioLogik E4200 firmware versions v1.6 and prior, which can be exploited by malicious actors to potentially gain unauthorized access to the product. This could lead to security breaches, data theft, and unauthorized manipulation of...

6.5CVSS5.6AI score0.00304EPSS

CVE•added 2023/08/24 5:7 a.m.•37 views

CVE-2023-4227

CVE-2023-4227 affects ioLogik 4000 Series (ioLogik E4200) firmware v1.6 and earlier. Root cause is the presence of an unauthorized service that could enable unauthorized access to the device, potentially leading to security breaches and data theft. Public documents do not provide a confirmed fix ...

6.5CVSS5.9AI score0.00304EPSS

Packet Storm•added 2023/07/11 12:0 a.m.•263 views

Ekushey Project Manager CRM 5.0 Cross Site Scripting

Exploit Title: Ekushey Project Manager CRM 5.0 - Stored XSS Exploit Author: CraCkEr Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/ekushey/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site Description Allow Attacker...

7.1AI score

NVD•added 2019/02/05 9:29 p.m.•7 views

CVE-2019-6521

WebAccess/SCADA, Version 8.3. Specially crafted requests could allow a possible authentication bypass that could allow an attacker to obtain and manipulate sensitive information...

8.6CVSS9AI score0.01928EPSS

Exploits0References2

securityvulns•added 2004/09/03 12:0 a.m.•27 views

[SA12439] TorrentTrader "id" SQL Injection Vulnerability

TITLE: TorrentTrader "id" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA12439 VERIFY ADVISORY: http://secunia.com/advisories/12439/ CRITICAL: Moderately critical IMPACT: Exposure of system information, Exposure of sensitive information, Manipulation of data WHERE: From remote SOFTWARE:...

0.5AI score

Exploit DB•added 2003/12/26 12:0 a.m.•35 views

Apache 2.0.4x mod_php - File Descriptor Leakage (1)

// source: https://www.securityfocus.com/bid/9302/info Reportedly, the Apache modphp module may be prone to a vulnerability that may allow a local attacker to gain access to privileged file descriptors. As a result, the attacker may pose as a legitimate server and possibly steal or manipulate...

7AI score

Exploit DB•added 2003/12/26 12:0 a.m.•40 views

Apache 2.0.4x mod_php - File Descriptor Leakage (2)

7.4AI score