CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Prion•added 2022/05/23 7:16 p.m.•16 views

Privilege escalation

The affected Cognex product, the In-Sight OPC Server versions v5.7.4 96 and prior, deserializes untrusted data, which could allow a remote attacker access to system level permission commands and local privilege escalation...

10CVSS9.2AI score0.0055EPSS

Exploits0References1Affected Software1

Packet Storm•added 2019/01/15 12:0 a.m.•142 views

Hucart CMS 5.7.4 Cross Site Request Forgery

function posturl,fields var p = document.createElement"form"; p.action = url; p.innerHTML = fields; p.target = "self"; p.method = "post"; document.body.appendChildp; p.submit; function csrfhack var fields; fields += ""; fields += ""; fields += ""; fields += ""; fields += ""; fields += ""; fields ...

0.9AI score0.00412EPSS

Exploits5

NVD•added 2019/01/13 3:29 p.m.•9 views

CVE-2019-6249

An issue was discovered in HuCart v5.7.4. There is a CSRF vulnerability that can add an admin account via /adminsys/index.php?load=admins&act=editinfo&acttype=add...

8.8CVSS8.7AI score0.00412EPSS

Exploits5References2

CVE•added 2019/01/13 3:0 p.m.•56 views

CVE-2019-6249

CVE-2019-6249 : HuCart v5.7.4 contains a Cross-Site Request Forgery (CSRF) vulnerability that allows an attacker to add an administrator account via the request /adminsys/index.php?load=admins&act=edit_info&act_type=add. This affects HuCart 5.7.4 as described in multiple sources (NVD entry and CN...

8.8CVSS8.6AI score0.00412EPSS

Exploits5References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by