Lucene search
K

24 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:35 a.m.20 views

CVE-2021-41542

A vulnerability has been identified in Climatix POL909 AWB module All versions V11.44, Climatix POL909 AWM module All versions V11.36. The User Management page of affected devices is vulnerable to cross-site scripting XSS. The vulnerability allows an attacker to send malicious JavaScript code whi...

6.1CVSS6.2AI score0.0054EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2017-15245

Malware in sbrugna...

8.8CVSS8.8AI score0.00477EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-14539

Malware in sbrugna...

4.9CVSS5.5AI score0.0146EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-15091

Malware in sbrugna...

6.5CVSS6.9AI score0.02025EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7326

Malware in sbrugna...

7.5CVSS5.7AI score0.02222EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-14546

Malware in sbrugna...

5.5CVSS6AI score0.00889EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-28393

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00328EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-48201

Malicious code in bioql PyPI...

7.1CVSS6.3AI score0.00313EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-48710

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00305EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-48212

Malicious code in bioql PyPI...

8.8CVSS6.3AI score0.00492EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-2518

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00335EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 12:18 a.m.7 views

CVE-2022-45857

An incorrect user management vulnerability CWE-286 in the FortiManager version 6.4.6 and below VDOM creation component may allow an attacker to access a FortiGate without a password via newly created VDOMs after the superadmin account is deleted...

7.5CVSS7AI score0.00305EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:26 a.m.7 views

CVE-2019-19552

In userman 13.0.76.43 through 15.0.20 in Sangoma FreePBX, XSS exists in the user management screen of the Administrator web site, i.e., the/admin/config.php?display=userman URI. An attacker with sufficient privileges can edit the Display Name of a user and embed malicious XSS code. When another...

4.8CVSS6.2AI score0.00552EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/19 1:31 p.m.13 views

CVE-2025-4934 PHPGurukul User Registration & Login and User Management System edit-profile.php sql injection

A vulnerability has been found in PHPGurukul User Registration & Login and User Management System 3.3 and classified as critical. This vulnerability affects unknown code of the file /edit-profile.php. The manipulation of the argument Contact leads to sql injection. The attack can be initiated...

7.5CVSS0.00421EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/04/17 9:22 p.m.5 views

CVE-2025-30708

Vulnerability in the Oracle User Management product of Oracle E-Business Suite component: Search and Register Users. Supported versions that are affected are 12.2.4-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle User...

7.5CVSS6.7AI score0.00549EPSS
Exploits0References1
NVD
NVD
added 2025/04/15 9:16 p.m.15 views

CVE-2025-30708

Vulnerability in the Oracle User Management product of Oracle E-Business Suite component: Search and Register Users. Supported versions that are affected are 12.2.4-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle User...

7.5CVSS0.00549EPSS
Exploits0References1
CVE
CVE
added 2024/12/16 8:0 p.m.46 views

CVE-2024-12666

CVE-2024-12666 affects ClassCMS up to version 4.8, where a vulnerability exists in the file path "/admin?do=admin:user:editPost" in the User Management Page . The root cause is described as improper handling of insufficient privileges, enabling a remote attack. The exploit has been disclosed publ...

8.8CVSS5AI score0.00487EPSS
Exploits1References4Affected Software1
CNVD
CNVD
added 2024/03/22 12:0 a.m.5 views

OneBlog User Management Module Cross-Site Scripting Vulnerability

OneBlog is a Java blog. A cross-site scripting vulnerability exists in OneBlog v2.3.4, which stems from a lack of effective filtering and escaping of user-supplied data in the User Management module, and can be exploited by an attacker to execute arbitrary Web script or HTML by injecting a...

5.4CVSS6.4AI score0.004EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/06/13 7:11 a.m.9 views

CVE-2023-2729

Use of insufficiently random values vulnerability in User Management Functionality in Synology DiskStation Manager DSM before 7.2-64561 allows remote attackers to obtain user credential via unspecified vectors...

5.9CVSS7.5AI score0.00875EPSS
Exploits0References2
Huntr
Huntr
added 2023/04/12 7:23 a.m.15 views

Able to change admin email and password without current password validation.

Description Able to change admin email and password without current password validation. Change the User%5Buid%5D for the User UID of the current admin user. for the example: uid of the current admin is 1. Then change the other info like User%5Bemail%5D,User%5Bpassword%5D and passwordrepeat for...

7AI score
Exploits0
Rows per page
Query Builder