CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

Prion•added 2023/11/30 11:15 p.m.•11 views

Design/Logic Flaw

In Delta Electronics InfraSuite Device Master v.1.0.7, A vulnerability exists that allows an unauthenticated attacker to disclose user information through a single UDP packet, obtain plaintext credentials, or perform NTLM relaying...

5CVSS6.8AI score0.0022EPSS

Exploits0References1Affected Software1

NVD•added 2023/11/30 10:15 p.m.•10 views

CVE-2023-47207

In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated attacker to execute code with local administrator privileges...

9.8CVSS0.02136EPSS

Exploits0References1

NVD•added 2023/03/28 5:15 p.m.•8 views

CVE-2023-27821

Databasir v1.0.7 was discovered to contain a remote code execution RCE vulnerability via the mockDataScript parameter...

9.8CVSS9.9AI score0.03165EPSS

Exploits1References2

Prion•added 2023/03/28 5:15 p.m.•11 views

Remote code execution

Databasir v1.0.7 was discovered to contain a remote code execution RCE vulnerability via the mockDataScript parameter...

7.5CVSS9.8AI score0.03165EPSS

Exploits1References2Affected Software1

Cvelist•added 2023/03/28 12:0 a.m.•12 views

CVE-2023-27821

Databasir v1.0.7 was discovered to contain a remote code execution RCE vulnerability via the mockDataScript parameter...

10AI score0.03165EPSS

Exploits1References2

CVE•added 2021/08/12 6:13 p.m.•45 views

CVE-2020-18460

711cms v1.0.7 is vulnerable to Cross Site Request Forgery (CSRF). The issue allows an attacker to cause the application to add an admin account via the endpoint admin.php?c=Admin&m=content. The provided connected records confirm the affected product/version and the vulnerable operation, with CSRF...

8.8CVSS8.7AI score0.00122EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/08/12 6:13 p.m.•13 views

CVE-2020-18460

Cross Site Request Forgery CSRF vulnerability exists in 711cms v1.0.7 that can add an admin account via admin.php?c=Admin&m=content...

8.9AI score0.00122EPSS

Exploits1References1

NVD•added 2020/08/04 9:15 p.m.•7 views

CVE-2020-15135

save-server npm package before version 1.05 is affected by a CSRF vulnerability, as there is no CSRF mitigation Tokens etc.. The fix introduced in version version 1.05 unintentionally breaks uploading so version v1.0.7 is the fixed version. This is patched by implementing Double submit. The CSRF...

7.6CVSS6.7AI score0.00091EPSS

Exploits1References3

OSV•added 2018/05/13 10:29 p.m.•0 views

CVE-2018-11018

An issue was discovered in PbootCMS v1.0.7. Cross-site request forgery CSRF vulnerability in apps/admin/controller/system/RoleController.php allows remote attackers to add administrator accounts via admin.php/role/add.html...

8.8CVSS5.8AI score

Exploits0References1

Prion•added 2016/10/10 8:59 p.m.•12 views

Cross site scripting

Reflected XSS in wordpress plugin whizz v1.0.7...

4.3CVSS6.2AI score0.05754EPSS

Exploits2References3Affected Software1

CVE•added 2016/10/10 8:0 p.m.•70 views

CVE-2016-1000154

CVE-2016-1000154 affects the WordPress WHIZZ plugin (versions

6.1CVSS5.9AI score0.05754EPSS

Exploits2References3Affected Software1

Exploit DB•added 2008/05/24 12:0 a.m.•50 views

PHPRaider 1.0.7 - 'PHPbb3.functions.php' Remote File Inclusion

Application Name : PhpRaider Mod phpbb3 Vulnerable Type : Remote File Include Google Keyword : Powered by phpRaider v1.0.7 Infection : Ä°lgili site ve sunucuya eriÅŸim saÄŸlanabilir. Bug Fix Advice : Undefined deÄŸerler, tanÄ±mlanmalÄ±dÄ±r. author : KaCaK a.K.a Dr.Hack3r Error Code :...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by