3 matches found
CVE-2022-23771
This vulnerability occurs in user accounts creation and deleteion related pages of IPTIME NAS products. The vulnerability could be exploited by a lack of validation when a POST request is made to this page. An attacker can use this vulnerability to or delete user accounts, or to escalate arbitrar...
CVE-2010-2268
Cross-site request forgery CSRF vulnerability in authcfg.cgi in Accoria Web Server aka Rock Web Server 1.4.7 allows remote attackers to hijack the authentication of administrators for requests that create user accounts...
CVE-2010-2268
Cross-site request forgery CSRF vulnerability in authcfg.cgi in Accoria Web Server aka Rock Web Server 1.4.7 allows remote attackers to hijack the authentication of administrators for requests that create user accounts...