A vulnerability was found in Allegro RomPager 4.01. It has been classified as problematic. Affected is an unknown function of the file usertable.htm?action=delete of the component HTTP POST Request Handler. The manipulation of the argument username leads to cross-site request forgery. It is...
8.8CVSS
7.3AI Score
0.001EPSS
5.9CVSS
5.7AI Score
0.001EPSS
Allegro WIndows 3.3.4152.0, embeds software administrator database credentials into its binary files, which allows users to access and modify data using the same...
8.1CVSS
7.9AI Score
0.001EPSS
An issue was discovered in Allegro Windows (formerly Popsy Windows) before 3.3.4156.1. A standard user can escalate privileges to SYSTEM if the FTP module is installed, because of DLL...
7.8CVSS
7.7AI Score
0.001EPSS
Allegro RomPager HTTP server allows remote attackers to cause a denial of service via a malformed authentication...
6.8AI Score
0.04EPSS