Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2017-1253

Malware in sbrugna...

8.8CVSS8.8AI score0.01087EPSS
Exploits0References3
Prion
Prion
added 2019/10/17 1:15 p.m.15 views

Cross site request forgery (csrf)

app/system/admin/admin/index.class.php in MetInfo 7.0.0beta allows a CSRF attack to add a user account via a doSaveSetup action to admin/index.php, as demonstrated by an admin/?n=admin&c=index&a=doSaveSetup URI...

6.8CVSS8.5AI score0.00598EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/09/23 11:0 a.m.17 views

CVE-2019-16706

kkcms v1.3 has a CSRF vulnerablity that can add an user account via admin/cmsuseradd.php...

8.8AI score0.00603EPSS
Exploits1References1
Veracode
Veracode
added 2019/09/06 6:10 a.m.19 views

Unauthorised Admin User Account Creation

https://github.com/goharbor/harbor is vulnerable to unauthorized admin user account creation. During a registration of a non-admin user, a request from non-admin user to create admin user account is not validated, allowing a low-privileged user to create an admin user account...

6.5CVSS2.2AI score0.23284EPSS
Exploits5References9Affected Software1
Prion
Prion
added 2018/11/21 4:29 p.m.20 views

Cross site request forgery (csrf)

PRTG Network Monitor before 18.2.40.1683 allows an authenticated user with a read-only account to create another user with a read-write account including administrator via an HTTP request because /api/addusers doesn't check, or doesn't properly check, user rights...

6.5CVSS8.5AI score0.0087EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2018/10/17 4:29 a.m.13 views

CVE-2018-18422

UsualToolCMS 8.0 allows CSRF for adding a user account via the cmsadmin/aadminx.php?x=a URI...

8.8CVSS8.7AI score0.00494EPSS
Exploits1References1
Prion
Prion
added 2018/10/09 11:29 p.m.15 views

Cross site request forgery (csrf)

qibosoft V7.0 allows CSRF via admin/index.php?lfj=member&action=addmember to add a user account...

6.8CVSS8.6AI score0.00494EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2018/07/08 4:29 p.m.20 views

CVE-2018-13445

An issue was discovered in SeaCMS 6.61. There is a CSRF vulnerability that can add a user account via adm1n/adminmanager.php?action=add...

8.8CVSS8.7AI score0.00523EPSS
Exploits1References1
exploitpack
exploitpack
added 2018/04/10 12:0 a.m.38 views

WUZHI CMS 4.1.0 - Cross-Site Request Forgery (Add User)

WUZHI CMS 4.1.0 - Cross-Site Request Forgery Add User Exploit Title: WUZHI CMS 4.1.0 CSRF vulnerability add user account Date: 2018-04-10 Exploit Author: taoge Vendor Homepage: https://github.com/wuzhicms/wuzhicms Software Link: https://github.com/wuzhicms/wuzhicms Version: 4.1.0 CVE :...

6.8CVSS0.5AI score0.00709EPSS
Exploits5
Prion
Prion
added 2017/06/08 2:29 p.m.17 views

Cross site request forgery (csrf)

atmail before 7.8.0.2 has CSRF, allowing an attacker to create a user account...

6.8CVSS7AI score0.00451EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder