Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
Tianti ProjectTianti

3 matches found

CVE
CVEadded 2025/03/10 10:15 p.m.51 views

CVE-2025-25907

tianti v2.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /user/ajax/save. This vulnerability allows attackers to execute arbitrary operations via a crafted GET or POST request.

8.8CVSS8.2AI score0.00035EPSS
CVE
CVEadded 2025/03/10 10:15 p.m.50 views

CVE-2025-27910

tianti v2.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /user/ajax/upd/status. This vulnerability allows attackers to execute arbitrary operations via a crafted GET or POST request.

8CVSS8.2AI score0.00038EPSS
CVE
CVEadded 2018/11/08 8:29 a.m.23 views

CVE-2018-19109

tianti 2.3 allows remote authenticated users to bypass intended permission restrictions by visiting tianti-module-admin/cms/column/list directly to read the column list page or edit a column.

8.8CVSS8.2AI score0.00346EPSS