Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
OpenwebanalyticsOpen Web Analytics

2 matches found

CVE
CVEadded 2018/04/17 7:29 p.m.34 views

CVE-2014-2294

Open Web Analytics (OWA) before 1.5.7 allows remote attackers to conduct PHP object injection attacks via a crafted serialized object in the owa_event parameter to queue.php.

9.8CVSS9.3AI score0.04914EPSS
CVE
CVEadded 2018/03/20 9:29 p.m.30 views

CVE-2014-1457

Open Web Analytics (OWA) before 1.5.6 improperly generates random nonce values, which makes it easier for remote attackers to bypass a CSRF protection mechanism by leveraging knowledge of an OWA user name.

8.8CVSS8.6AI score0.00026EPSS