what you don't know can hurt you
Showing 1 - 25 of 3,237 RSS Feed

CSRF Files

Red Hat Security Advisory 2021-4837-02
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4837-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
systems | linux, redhat
advisories | CVE-2021-42096, CVE-2021-42097
MD5 | adce09d8ee6edc9bc1a330287a7e1db8
Red Hat Security Advisory 2021-4838-02
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4838-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
systems | linux, redhat
advisories | CVE-2021-42096, CVE-2021-42097
MD5 | 78235a44bbbb2d32a850948b3f6fe6fd
Red Hat Security Advisory 2021-4839-02
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4839-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
systems | linux, redhat
advisories | CVE-2021-42096, CVE-2021-42097
MD5 | a647bf88541b9b2d347e0110252f1537
Red Hat Security Advisory 2021-4826-02
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4826-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
systems | linux, redhat
advisories | CVE-2021-42096, CVE-2021-42097
MD5 | 14b18aea225481151e508b04b4e2139b
Quick.CMS 6.7 Cross Site Request Forgery / Cross Site Scripting
Posted Nov 17, 2021
Authored by Rahad Chowdhury

Quick.CMS version 6.7 suffers from a cross site scripting vulnerability that can allow for cross site request forgery attacks.

tags | exploit, xss, csrf
MD5 | 935c82e5735c531924eaba362cb28499
PHP Laravel 8.70.1 Cross Site Request Forgery / Cross Site Scripting
Posted Nov 15, 2021
Authored by Hosein Vita

PHP Laravel version 8.70.1 suffers from cross site scripting and cross site request forgery related vulnerabilities.

tags | exploit, php, vulnerability, xss, csrf
MD5 | 658c486e9e1e6766cdb966e8b5d07dc4
Hostel Management System 2.1 Cross Site Request Forgery / Cross Site Scripting
Posted Oct 28, 2021
Authored by Anubhav Singh

Hostel Management System version 2.1 suffers from cross site request forgery and cross site scripting vulnerabilities. Original discovery of cross site scripting in this version is attributed to Kokn3t in October of 2020.

tags | exploit, vulnerability, xss, csrf
MD5 | 38336a69a2c7c2f1f9993d24b2135900
Ubuntu Security Notice USN-5121-1
Posted Oct 22, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5121-1 - Andre Protas, Richard Cloke, and Andy Nuttall discovered that Mailman did not properly associate cross-site request forgery tokens to specific accounts. A remote attacker could use this to perform a CSRF attack to gain access to another account. Andre Protas, Richard Cloke, and Andy Nuttall discovered that Mailman's cross-site request forgery tokens for the options page are derived from the admin password. A remote attacker could possibly use this to assist in performing a brute force attack against the admin password. Various other issues were also addressed.

tags | advisory, remote, csrf
systems | linux, ubuntu
advisories | CVE-2021-42096, CVE-2021-42097
MD5 | e580a4cebc05a472a168210820d5451c
Company's Recruitment Management System 1.0 Cross Site Request Forgery
Posted Oct 18, 2021
Authored by Aniket Deshmane

Company's Recruitment Management System version 1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | d34469cc623d90fb123d5a088d9dc81c
Pharmacy Point Of Sale System 1.0 Cross Site Request Forgery
Posted Oct 13, 2021
Authored by Murat Demirci

Pharmacy Point of Sale System version 1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | fdb1ff2011d4cd0b2ebbec8a953bec41
OpenVPN Monitor 1.1.3 Cross Site Request Forgery
Posted Sep 24, 2021
Authored by Sylvain Heiniger, Emanuel Duss

OpenVPN Monitor versions 1.1.3 and below suffer from a cross site request forgery vulnerability that allows an attacker to disconnect arbitrary VPN clients.

tags | exploit, arbitrary, csrf
advisories | CVE-2021-31604
MD5 | 8fe8676ce55952fcce460972fb63424c
WordPress Fitness Calculators 1.9.5 Cross Site Request Forgery
Posted Sep 23, 2021
Authored by 0xB9

WordPress Fitness Calculators plugin version 1.9.5 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2021-24272
MD5 | 30ca373f3886f6f98013bb82a0a42e7c
Backdrop CMS 1.20.0 Cross Site Request Forgery / Command Execution
Posted Sep 23, 2021
Authored by V1n1v131r4

Backdrop CMS version 1.20.0 suffers from cross site request forgery vulnerabilities that can assist an attacker in achieving command execution.

tags | exploit, vulnerability, csrf
MD5 | 2e44ed7c8aa4c0431592175c5c6161c9
T-Soft E-Commerce 4 Cross Site Request Forgery
Posted Sep 20, 2021
Authored by Alperen Ergel

T-Soft E-Commerce version 4 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 6e54f2c9db010d22ce70cd8e73093ee8
ECOA Building Automation System Cross Site Request Forgery
Posted Sep 10, 2021
Authored by Neurogenesia | Site zeroscience.mk

ECOA building automation systems suffer from a cross site request forgery vulnerability. Many versions are affected.

tags | exploit, csrf
MD5 | 711e9717c99a42eb35db2f29e3184c05
Altus Sistemas de Automacao Products CSRF / Command Injection / Hardcoded Credentials
Posted Aug 19, 2021
Authored by T. Weber, Daniel Teuchert | Site sec-consult.com

Multiple Altus Sistemas de Automacao products such as the Nexto NX30xx Series, Nexto NX5xxx Series, Nexto Xpress XP3xx Series, and Hadron Xtorm HX3040 Series suffer from command injection, cross site request forgery, and hardcoded credential vulnerabilities.

tags | exploit, vulnerability, csrf
advisories | CVE-2021-39243
MD5 | bc2b34242c999f910e60a833d0d84d5d
GeoVision Geowebserver 5.3.3 LFI / XSS / CSRF / Code Execution
Posted Aug 17, 2021
Authored by Ken Pyle

GeoVision Geowebserver versions 5.3.3 and below suffer from code execution, cross site request forgery, cross site scripting, html injection, and local file inclusion vulnerabilities.

tags | exploit, local, vulnerability, code execution, xss, file inclusion, csrf
MD5 | 7f0018d2193589d1334f12f6ebcc8843
CloverDX 5.9.0 Code Execution / Cross Site Request Forgery
Posted Jul 29, 2021
Authored by niebardzo

CloverDX version 5.9.0 cross site request forgery to remote code execution exploit.

tags | exploit, remote, code execution, csrf
advisories | CVE-2021-29995
MD5 | 6b9334fc24a1423e729c3cc9ba40c878
Webmin 1.973 Cross Site Request Forgery
Posted Jul 20, 2021
Authored by Mesh3l_911, Z0ldyck

Webmin version 1.973 cross site request forgery exploit that loads a reverse shell.

tags | exploit, shell, csrf
advisories | CVE-2021-31761
MD5 | 64d50ff2e6b23cb13a822ba9d9b79c96
Webmin 1.973 Cross Site Request Forgery
Posted Jul 14, 2021
Authored by Mesh3l_911, Z0ldyck

Webmin version 1.973 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2021-31762
MD5 | 0fda878b90a012ca2ea1c4d01fc82f40
Red Hat Security Advisory 2021-2431-01
Posted Jul 2, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2431-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.5.41. Issues addressed include XML injection, cross site request forgery, and denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability, csrf
systems | linux, redhat
advisories | CVE-2020-27216, CVE-2020-27218, CVE-2020-27223, CVE-2021-21642, CVE-2021-21643, CVE-2021-21644, CVE-2021-21645
MD5 | 914dc4f59873257854d278f62feeac5d
b2evolution 7.2.2 Cross Site Request Forgery
Posted Jul 2, 2021
Authored by Alperen Ergel

b2evolution version 7.2.2 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 512fd0051c5839032b7eb54a4496a42f
Red Hat Security Advisory 2021-2517-01
Posted Jul 1, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2517-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.11.462. Issues addressed include XML injection, cross site request forgery, and denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability, csrf
systems | linux, redhat
advisories | CVE-2020-27216, CVE-2020-27218, CVE-2020-27223, CVE-2021-21642, CVE-2021-21643, CVE-2021-21644, CVE-2021-21645
MD5 | aa73b5835efa9ebd222364f886c48be6
Simple CRM 3.0 Cross Site Request Forgery
Posted Jun 20, 2021
Authored by Riadh Benlamine

Simple CRM version 3.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | f9df6eaf525f45b9f265bd32aaccf23c
ICE Hrm 29.0.0.OS Cross Site Request Forgery
Posted Jun 18, 2021
Authored by Piyush Patil, Rafal Lykowski

ICE Hrm version 29.0.0.OS suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | ad481616d12f28e2fa1e3372498ac806
Page 1 of 130
Back12345Next

File Archive:

November 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    19 Files
  • 2
    Nov 2nd
    25 Files
  • 3
    Nov 3rd
    8 Files
  • 4
    Nov 4th
    7 Files
  • 5
    Nov 5th
    24 Files
  • 6
    Nov 6th
    0 Files
  • 7
    Nov 7th
    0 Files
  • 8
    Nov 8th
    18 Files
  • 9
    Nov 9th
    9 Files
  • 10
    Nov 10th
    106 Files
  • 11
    Nov 11th
    19 Files
  • 12
    Nov 12th
    13 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    18 Files
  • 16
    Nov 16th
    12 Files
  • 17
    Nov 17th
    15 Files
  • 18
    Nov 18th
    12 Files
  • 19
    Nov 19th
    4 Files
  • 20
    Nov 20th
    2 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    22 Files
  • 23
    Nov 23rd
    14 Files
  • 24
    Nov 24th
    19 Files
  • 25
    Nov 25th
    4 Files
  • 26
    Nov 26th
    1 Files
  • 27
    Nov 27th
    4 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close