CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

5 matches found

Positive Technologies•added 2023/11/27 12:0 a.m.•2 views

PT-2023-31032 · Klive · Klive

Name of the Vulnerable Software and Affected Versions: 32ns KLive versions 2019-1-19 and earlier Description: The issue allows a remote attacker to obtain sensitive information via a crafted script to the "web/user.php" component. This is achieved through a SQL Injection attack, which enables the...

7.5CVSS7.3AI score0.00065EPSS

Exploits1References5

Github Security Blog•added 2022/05/14 3:45 a.m.•19 views

Yii Framework Cross-Site Request Forgery (CSRF)

In Yii Framework 2.x before 2.0.14, the switchIdentity function in web/User.php did not regenerate the CSRF token upon a change of identity...

8.8CVSS7.1AI score0.00168EPSS

Exploits0References6Affected Software2

NVD•added 2018/01/22 10:29 p.m.•12 views

CVE-2018-6009

In Yii Framework 2.x before 2.0.14, the switchIdentity function in web/User.php did not regenerate the CSRF token upon a change of identity...

8.8CVSS8.7AI score0.00168EPSS

Exploits0References1

OSV•added 2018/01/22 10:29 p.m.•8 views

CVE-2018-6009

In Yii Framework 2.x before 2.0.14, the switchIdentity function in web/User.php did not regenerate the CSRF token upon a change of identity...

8.8CVSS7.1AI score

Exploits0References1

Cvelist•added 2018/01/22 10:0 p.m.•15 views

CVE-2018-6009

In Yii Framework 2.x before 2.0.14, the switchIdentity function in web/User.php did not regenerate the CSRF token upon a change of identity...

8.7AI score0.00168EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by