28 matches found
EUVD-2007-1914
Malware in sbrugna...
EUVD-2023-54678
Malicious code in bioql PyPI...
EUVD-2023-57694
Malicious code in bioql PyPI...
CVE-2023-5378
Improper Input Validation vulnerability in MegaBIP and already unsupported SmodBIP software allows for Stored XSS.This issue affects SmodBIP in all versions and MegaBIP in versions up to 4.36.2. MegaBIP 5.08 was tested and is not vulnerable. A precise range of vulnerable versions remains unknown...
CVE-2023-5378
Improper Input Validation vulnerability in MegaBIP and already unsupported SmodBIP software allows for Stored XSS.This issue affects SmodBIP in all versions and MegaBIP in versions up to 4.36.2. MegaBIP 5.08 was tested and is not vulnerable. A precise range of vulnerable versions remains unknown...
Input validation
Improper Input Validation vulnerability in MegaBIP and already unsupported SmodBIP software allows for Stored XSS.This issue affects SmodBIP in all versions and MegaBIP in versions up to 4.36.2. MegaBIP 5.08 was tested and is not vulnerable. A precise range of vulnerable versions remains unknown...
CVE-2023-5378
CVE-2023-5378 affects MegaBIP up to version 4.36.2 and all versions of SmodBIP ( MegaBIP 5.08 is not vulnerable ). The vulnerability is an improper input validation that enables stored XSS. Affected components: MegaBIP (input handling that leads to stored XSS) and SmodBIP (all versions). Exploita...
CVE-2023-5378 Stored XSS in SmodBIP and MegaBIP
Improper Input Validation vulnerability in MegaBIP and already unsupported SmodBIP software allows for Stored XSS.This issue affects SmodBIP in all versions and MegaBIP in versions up to 4.36.2. MegaBIP 5.08 was tested and is not vulnerable. A precise range of vulnerable versions remains unknown...
CVE-2023-5378 Stored XSS in SmodBIP and MegaBIP
Improper Input Validation vulnerability in MegaBIP and already unsupported SmodBIP software allows for Stored XSS.This issue affects SmodBIP in all versions and MegaBIP in versions up to 4.36.2. MegaBIP 5.08 was tested and is not vulnerable. A precise range of vulnerable versions remains unknown...
PT-2024-14791 · Smodbip +1 · Smodbip +1
Name of the Vulnerable Software and Affected Versions: MegaBIP versions up to 4.36.2 SmodBIP all versions Description: The issue is related to an Improper Input Validation vulnerability that allows for Stored XSS. This vulnerability affects MegaBIP in versions up to 4.36.2 and SmodBIP in all...
CVE-2023-4837
SmodBIP is vulnerable to Cross-Site Request Forgery, that could be used to induce logged in users to perform unintended actions, including creation of additional accounts with administrative privileges. This issue affects all versions of SmodBIP. SmodBIP is no longer maintained and the...
Cross site request forgery (csrf)
UNSUPPPORTED WHEN ASSIGNED SmodBIP is vulnerable to Cross-Site Request Forgery, that could be used to induce logged in users to perform unintended actions, including creation of additional accounts with administrative privileges. This issue affects all versions of SmodBIP. SmodBIP is no longer...
CVE-2023-4837 Cross-site request forgery (CSRF) in SmodBIP
SmodBIP is vulnerable to Cross-Site Request Forgery, that could be used to induce logged in users to perform unintended actions, including creation of additional accounts with administrative privileges. This issue affects all versions of SmodBIP. SmodBIP is no longer maintained and the...
CVE-2023-4837 Cross-site request forgery (CSRF) in SmodBIP
SmodBIP is vulnerable to Cross-Site Request Forgery, that could be used to induce logged in users to perform unintended actions, including creation of additional accounts with administrative privileges. This issue affects all versions of SmodBIP. SmodBIP is no longer maintained and the...
CVE-2023-4837
CVE-2023-4837 describes a Cross-Site Request Forgery vulnerability in SmodBIP. The issue affects all versions of SmodBIP and is not being fixed, as the project is no longer maintained. An attacker could induce logged-in users to perform unintended actions, including the creation of additional adm...
SmodBIP Cross-Site Request Forgery Vulnerability
SmodBIP is a free BIP program. SmodBIP has a security vulnerability that stems from the presence of a cross-site request forgery CSRF vulnerability. An attacker can exploit the vulnerability to perform malicious actions under the current identity using elevated privileges...
PT-2023-30800 · Smodbip · Smodbip
Name of the Vulnerable Software and Affected Versions: SmodBIP affected versions not specified Description: SmodBIP is vulnerable to Cross-Site Request Forgery, which could be used to induce logged-in users to perform unintended actions, including creation of additional accounts with administrati...
SmodBIP Index.PHP SQL注入漏洞
SmodBIP是一款基于PHP的WEB应用程序。 SmodBIP不正确过滤用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,可获得敏感信息。 问题是'Index.PHP'脚本对用户提交的'id'参数缺少过滤,提交恶意SQL代码作为参数数据,可导致更改原来的SQL逻辑,获得敏感信息。 SmodBIP 1.06 目前没有解决方案提供: http://www.smod.pl/ ? / Autor: Kacper Contact: [email protected] Homepage: http://www.rahim.webd.pl/ Irc: irc.milw0rm.com:66...
CVE-2007-1920
SQL injection vulnerability in index.php in the aktualnosci module in SmodBIP 1.06 and earlier allows remote attackers to execute arbitrary SQL commands via the zoom parameter, possibly related to home.php...
Sql injection
SQL injection vulnerability in index.php in the aktualnosci module in SmodBIP 1.06 and earlier allows remote attackers to execute arbitrary SQL commands via the zoom parameter, possibly related to home.php...