Lucene search
K

447 matches found

Huntr
Huntr
added 2023/02/14 6:6 p.m.29 views

Privilege escalation from user with "add user" to super admin

Description Before I created this submission, I read this report: https://huntr.dev/bounties/258cd498-7275-4b12-ac73-79c9ba3e58e4/. I was afraid that my submission would be a duplicate of that. After reading it carefully, I decided to make a report because my report is not exploiting the backup...

6.5CVSS8.3AI score0.00876EPSS
Exploits1
OSV
OSV
added 2023/02/01 10:15 p.m.18 views

CVE-2023-23751

An issue was discovered in Joomla! 4.0.0 through 4.2.4. A missing ACL check allows non super-admin users to access comactionlogs...

4.3CVSS6.7AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/01 9:12 p.m.10 views

CVE-2023-23751 [20230102] - Core - Missing ACL checks for com_actionlogs

An issue was discovered in Joomla! 4.0.0 through 4.2.4. A missing ACL check allows non super-admin users to access comactionlogs...

7AI score0.00444EPSS
Exploits0References1
Cisco
Cisco
added 2023/02/01 4:0 p.m.30 views

Cisco Identity Services Engine XML External Entity Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to access sensitive information, conduct a server-side request forgery SSRF attack through an affected device, or negatively impact the responsiveness of the...

6CVSS6.1AI score0.0075EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/02/01 12:0 a.m.5 views

PT-2023-19176 · Joomla · Joomla!

Name of the Vulnerable Software and Affected Versions: Joomla! versions 4.0.0 through 4.2.4 Description: An issue was discovered that allows non super-admin users to access com actionlogs due to a missing ACL check. Recommendations: For Joomla! versions 4.0.0 through 4.2.4, consider restricting...

4.3CVSS6.9AI score0.00444EPSS
Exploits0References8
OSV
OSV
added 2023/01/26 9:18 p.m.4 views

CVE-2022-47767

A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super administration privileges to the attacker. This affects Solar-Log devices that use firmware version v4.2.7 up to v5.1.1 included. This does not exist in SL 200, 500, 1000 / fixed in 4.2.8 for SL 250, 300,...

9.8CVSS5.8AI score0.01212EPSS
Exploits1References2
NVD
NVD
added 2023/01/05 8:15 a.m.30 views

CVE-2022-45857

An incorrect user management vulnerability CWE-286 in the FortiManager version 6.4.6 and below VDOM creation component may allow an attacker to access a FortiGate without a password via newly created VDOMs after the superadmin account is deleted...

7.5CVSS6.7AI score0.00305EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/01/05 12:0 a.m.8 views

PT-2023-14784 · Fortinet · Fortigate +1

Name of the Vulnerable Software and Affected Versions: FortiManager versions 6.4.6 and below Description: The issue is related to an incorrect user management vulnerability in the VDOM creation component. This may allow an attacker to access a FortiGate without a password via newly created VDOMs...

7.5CVSS7.2AI score0.00305EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/12/01 12:0 a.m.6 views

PT-2022-23805 · Sophos · Sophos Firewall

Name of the Vulnerable Software and Affected Versions: Sophos Firewall versions prior to 19.5 GA Description: A stored XSS vulnerability allows admin to super-admin privilege escalation in the Webadmin import group wizard. Recommendations: For Sophos Firewall versions prior to 19.5 GA, update to...

8.4CVSS8.2AI score0.00803EPSS
Exploits0References4
CVE
CVE
added 2022/12/01 12:0 a.m.56 views

CVE-2022-40489

CVE-2022-40489 affects ThinkCMF v6.0.7 and represents a Cross-Site Request Forgery (CSRF) vulnerability that can let a Super Administrator be injected into administrative users. The core issue is CSRF in ThinkCMF, enabling credential injection and site takeover as described in multiple sources (R...

8.8CVSS8.7AI score0.00343EPSS
Exploits1References1Affected Software1
Packet Storm
Packet Storm
added 2022/10/31 12:0 a.m.239 views

Simple Cold Storage Management System 1.0 SQL Injection

Simple Cold Storage Management System v1.0 by oretnom23 has SQL injection BUGAuthor: QiaoRui feng Login account: admin/admin123 Super Admin account vendors: https://www.sourcecodester.com/php/15088/simple-cold-storage-management-system-using-phpoop-source-code.html The program is built using the...

7.2CVSS0.4AI score0.01066EPSS
Exploits2
OSV
OSV
added 2022/10/14 4:15 a.m.6 views

CVE-2022-36803

The MasterUserEdit API in Atlassian Jira Align Server before version 10.109.2 allows An authenticated attacker with the People role permission to use the MasterUserEdit API to modify any users role to Super Admin. This vulnerability was reported by Jacob Shafer from Bishop Fox...

8.8CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2022/10/14 4:15 a.m.24 views

CVE-2022-36802

The ManageJiraConnectors API in Atlassian Jira Align before version 10.109.2 allows remote attackers to exploit this issue to access internal network resources via a Server-Side Request Forgery. This can be exploited by a remote, unauthenticated attacker with Super Admin privileges by sending a...

4.9CVSS0.00826EPSS
Exploits0References1
NVD
NVD
added 2022/10/14 4:15 a.m.36 views

CVE-2022-36803

The MasterUserEdit API in Atlassian Jira Align Server before version 10.109.2 allows An authenticated attacker with the People role permission to use the MasterUserEdit API to modify any users role to Super Admin. This vulnerability was reported by Jacob Shafer from Bishop Fox...

8.8CVSS0.00555EPSS
Exploits0References1
OSV
OSV
added 2022/10/14 4:15 a.m.6 views

CVE-2022-36802

The ManageJiraConnectors API in Atlassian Jira Align before version 10.109.2 allows remote attackers to exploit this issue to access internal network resources via a Server-Side Request Forgery. This can be exploited by a remote, unauthenticated attacker with Super Admin privileges by sending a...

4.9CVSS5.8AI score0.00826EPSS
Exploits0References1
Prion
Prion
added 2022/10/14 4:15 a.m.16 views

Server side request forgery (ssrf)

The ManageJiraConnectors API in Atlassian Jira Align before version 10.109.2 allows remote attackers to exploit this issue to access internal network resources via a Server-Side Request Forgery. This can be exploited by a remote, unauthenticated attacker with Super Admin privileges by sending a...

3.3CVSS5.2AI score0.00826EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/10/14 3:45 a.m.39 views

CVE-2022-36803

The MasterUserEdit API in Atlassian Jira Align Server before version 10.109.2 allows An authenticated attacker with the People role permission to use the MasterUserEdit API to modify any users role to Super Admin. This vulnerability was reported by Jacob Shafer from Bishop Fox...

8.7AI score0.00555EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/10/14 3:45 a.m.28 views

CVE-2022-36802

The ManageJiraConnectors API in Atlassian Jira Align before version 10.109.2 allows remote attackers to exploit this issue to access internal network resources via a Server-Side Request Forgery. This can be exploited by a remote, unauthenticated attacker with Super Admin privileges by sending a...

5.5AI score0.00826EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/07 12:0 a.m.7 views

PT-2022-6447 · Fortinet · Fortiproxy +1

Name of the Vulnerable Software and Affected Versions: FortiOS versions 6.4.11 and earlier, 7.0.0 through 7.0.8, 7.2.0 through 7.2.2 FortiProxy versions 7.0.0 through 7.0.8, 7.2.0 through 7.2.2 Description: A relative path traversal issue in the Virtual Domains VDOM technology of FortiOS and...

8.2CVSS8.2AI score0.00217EPSS
Exploits0References8
Huntr
Huntr
added 2022/09/19 12:10 a.m.23 views

Privilege escalation from admin and normal user to super admin

Description Lavsms provides 5 types of roles. But the issue is admin can escalate to the super admin role for himself as well as for other un-privileged users too even lower than the admin role. Proof of Concept 1. POST /users/id with custom payload via API Testing tool like postman/Insomnia. Ste...

1AI score
Exploits0
Rows per page
Query Builder