A vulnerability was found in Allegro RomPager 4.01. It has been classified as problematic. Affected is an unknown function of the file usertable.htm?action=delete of the component HTTP POST Request Handler. The manipulation of the argument username leads to cross-site request forgery. It is...
8.8CVSS
8.6AI Score
0.001EPSS
5.9CVSS
5.6AI Score
0.001EPSS
Allegro WIndows 3.3.4152.0, embeds software administrator database credentials into its binary files, which allows users to access and modify data using the same...
8.1CVSS
7.9AI Score
0.001EPSS
An issue was discovered in Allegro Windows (formerly Popsy Windows) before 3.3.4156.1. A standard user can escalate privileges to SYSTEM if the FTP module is installed, because of DLL...
7.8CVSS
7.6AI Score
0.001EPSS
Allegro RomPager HTTP server allows remote attackers to cause a denial of service via a malformed authentication...
6.7AI Score
0.04EPSS