Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
TurnkeyformsWeb Hosting Directory

3 matches found

CVE
CVEadded 2009/08/12 10:0 a.m.42 views

CVE-2008-6939

TurnkeyForms Web Hosting Directory is affected by CVE-2008-6939, which allows remote attackers to bypass authentication by manipulating cookies (adm=1 to gain admin privileges or logged to impersonate another user). The issue enables privilege escalation to admin or another user without authentic...

7.5CVSS7.4AI score0.04023EPSS
CVE
CVEadded 2009/08/12 10:0 a.m.39 views

CVE-2008-6941

The CVE-2008-6941 entry concerns a SQL injection in the login function of TurnkeyForms Web Hosting Directory, allowing remote attackers to execute arbitrary SQL commands via the password field. The NVD data indicates a high impact with a base score of 7.5 (Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P). Con...

7.5CVSS8.8AI score0.005EPSS
CVE
CVEadded 2009/08/12 10:0 a.m.34 views

CVE-2008-6940

CVE-2008-6940 affects TurnkeyForms Web Hosting Directory. The vulnerability stems from insufficient access control that allows remote attackers to access sensitive data stored under the web root, specifically enabling retrieval of a database backup via a direct request to admin/backup/db. The con...

7.5CVSS6.4AI score0.07205EPSS