CVE-2021-47701

OpenBMCS 2.4 allows an attacker to escalate privileges from a read user to an admin user by manipulating permissions and exploiting a vulnerability in the updateuserpermissions.php script. Attackers can submit a malicious HTTP POST request to PHP scripts in '/plugins/useradmin/' directory...

EUVD-2021-34738

OpenBMCS 2.4 allows an attacker to escalate privileges from a read user to an admin user by manipulating permissions and exploiting a vulnerability in the updateuserpermissions.php script. Attackers can submit a malicious HTTP POST request to PHP scripts in '/plugins/useradmin/' directory...

CVE-2021-47701

OpenBMCS 2.4 allows an attacker to escalate privileges from a read user to an admin user by manipulating permissions and exploiting a vulnerability in the updateuserpermissions.php script. Attackers can submit a malicious HTTP POST request to PHP scripts in '/plugins/useradmin/' directory...

CVE-2021-47701

OpenBMCS 2.4 allows an attacker to escalate privileges from a read user to an admin user by manipulating permissions and exploiting a vulnerability in the updateuserpermissions.php script. Attackers can submit a malicious HTTP POST request to PHP scripts in '/plugins/useradmin/' directory...

CVE-2021-47701 OpenBMCS User Management Privilege Escalation

OpenBMCS 2.4 allows an attacker to escalate privileges from a read user to an admin user by manipulating permissions and exploiting a vulnerability in the updateuserpermissions.php script. Attackers can submit a malicious HTTP POST request to PHP scripts in '/plugins/useradmin/' directory...

CVE-2021-47701 OpenBMCS User Management Privilege Escalation

OpenBMCS 2.4 allows an attacker to escalate privileges from a read user to an admin user by manipulating permissions and exploiting a vulnerability in the updateuserpermissions.php script. Attackers can submit a malicious HTTP POST request to PHP scripts in '/plugins/useradmin/' directory...

CVE-2021-47701

OpenBMCS 2.4 is vulnerable to privilege escalation via update_user_permissions.php. A read user can gain admin rights by manipulating permissions and sending crafted HTTP POST requests to scripts under /plugins/useradmin/. The vulnerability is documented across multiple feeds (including Red Hat a...

PT-2025-50231

Name of the Vulnerable Software and Affected Versions OpenBMCS version 2.4 Description The software contains a flaw that allows privilege escalation from a read user to an admin user. This is achieved by manipulating permissions and exploiting a weakness in the update user permissions.php script...

NuCom NC-WR744G 安全漏洞

NuCom NC-WR744G is a wireless router from NuCom. A security vulnerability exists in NuCom NC-WR744G version 8.5.5 Build 20200530.307, which originates from the presence of hard-coded credentials in parameter CMCCAdmin/useradmin/CUAdmin...

CVE-2021-27621

Information Disclosure vulnerability in UserAdmin application in SAP NetWeaver Application Server for Java, versions - 7.11,7.20,7.30,7.31,7.40 and 7.50 allows attackers to access restricted information by entering malicious server name...

CVE-2024-11491

A vulnerability was found in 115cms up to 20240807. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php/admin/web/useradmin.html. The manipulation of the argument ks leads to cross site scripting. The attack may be launched remotely. The...

CVE-2024-11491

CVE-2024-11491 affects 115cms (up to version 20240807). Affected component: file /index.php/admin/web/useradmin.html. Root cause: manipulation of the ks argument enables cross-site scripting (XSS). Exploitation can be remote; the exploit has been disclosed publicly. Evidence in PT-2024-17030 and ...

PT-2024-17030 · 115Cms · 115Cms

Name of the Vulnerable Software and Affected Versions: 115cms versions up to 20240807 Description: A vulnerability was found in some unknown functionality of the file /index.php/admin/web/useradmin.html. The manipulation of the ks argument leads to cross-site scripting. The attack may be launched...

HGiga iSherlock 路径遍历漏洞

HGiga iSherlock is a series of software products from China's Henderson Technology HGiga. A path traversal vulnerability exists in HGiga iSherlock, which stems from the presence of a path traversal vulnerability. An attacker can exploit this vulnerability to download arbitrary system files...

HGiga iSherlock 路径遍历漏洞

HGiga iSherlock is a series of software products from China's Henderson Technology HGiga. A path traversal vulnerability exists in HGiga iSherlock, which stems from the presence of a path traversal vulnerability. An attacker can exploit this vulnerability to download arbitrary system files...

HGiga iSherlock 安全漏洞

HGiga iSherlock is a series of software products from China's Henderson Technology HGiga. A security vulnerability exists in HGiga iSherlock, which originates from a command injection vulnerability in the email search interface. The vulnerability can be exploited to execute arbitrary system...

Cross-site Scripting (XSS)

github.com/alist-org/alist is vulnerable to cross-site scripting. The vulnerability exists due to lack of sanitization in useradmin page which allows a remote attacker to inject and execute malicious javascript on the system...

OpenBMCS 2.4 - Create Admin / Remote Privilege Escalation

Exploit Title: OpenBMCS 2.4 - Create Admin / Remote Privilege Escalation Exploit Author: LiquidWorm Date: 26/10/2021 OpenBMCS 2.4 Create Admin / Remote Privilege Escalation Vendor: OPEN BMCS Product web page: https://www.openbmcs.com Affected version: 2.4 Summary: Building Management & Controls...

OpenBMCS 2.4 Remote Privilege Escalation

OpenBMCS 2.4 Create Admin / Remote Privilege Escalation Vendor: OPEN BMCS Product web page: https://www.openbmcs.com Affected version: 2.4 Summary: Building Management & Controls System BMCS. No matter what the size of your business, the OpenBMCS software has the ability to expand to hundreds of...

SAP NetWeaver AS JAVA Information Disclosure (3023299)

SAP Netweaver Application Server Java versions 7.11, 7.20, 7.30, 7.31, 7.40, and 7.50 allow an attacker to access restricted information by entering malicious server name via the UserAdmin application of the SAP NetWeaver application server. Note that Nessus has not tested for this issue but has...