|
247311
|
6.5 |
MEDIUM
Adjacent
|
technicolor
|
tc7200.20_firmware
|
Technicolor TC7200.20 devices allow remote attackers to cause a denial of service (networking outage) via a flood of random MAC addresses, as demonstrated by macof. NOTE: Technicolor denies that the …
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2018-15852
|
2024-11-21 12:51 |
2018-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247312
|
8.8 |
HIGH
Network
|
flexocms_project
|
flexo_cms
|
An issue was discovered in Flexo CMS v0.1.6. There is a CSRF vulnerability that can add an administrator via /admin/user/add.
|
CWE-352
Origin Validation Error
|
CVE-2018-15851
|
2024-11-21 12:51 |
2018-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247313
|
8.8 |
HIGH
Network
|
redaxo
|
redaxo_cms
|
An issue was discovered in REDAXO CMS 4.7.2. There is a CSRF vulnerability that can add an administrator account via index.php?page=user.
|
CWE-352
Origin Validation Error
|
CVE-2018-15850
|
2024-11-21 12:51 |
2018-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247314
|
4.3 |
MEDIUM
Network
|
portfoliocms_project
|
portfoliocms
|
An issue was discovered in portfolioCMS 1.0.5. There is CSRF to update the website settings via admin/aboutus.php.
|
CWE-352
Origin Validation Error
|
CVE-2018-15849
|
2024-11-21 12:51 |
2018-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247315
|
8.8 |
HIGH
Network
|
portfoliocms_project
|
portfoliocms
|
An issue was discovered in portfolioCMS 1.0.5. There is CSRF to create new pages via admin/portfolio.php?newpage=true.
|
CWE-352
Origin Validation Error
|
CVE-2018-15848
|
2024-11-21 12:51 |
2018-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247316
|
6.1 |
MEDIUM
Network
|
puppycms
|
puppycms
|
An issue was discovered in puppyCMS 5.1. There is an XSS vulnerability via menu.php in the "Add Page/URL" URL link field.
|
CWE-79
Cross-site Scripting
|
CVE-2018-15847
|
2024-11-21 12:51 |
2018-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247317
|
8.8 |
HIGH
Network
|
fledrcms_project
|
fledrcms
|
An issue was discovered in fledrCMS through 2014-02-03. There is a CSRF vulnerability that can change the administrator's password via index.php?p=done&savedata=1.
|
CWE-352
Origin Validation Error
|
CVE-2018-15846
|
2024-11-21 12:51 |
2018-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247318
|
8.8 |
HIGH
Network
|
gleezcms
|
gleez_cms
|
There is a CSRF vulnerability that can add an administrator account in Gleez CMS 1.2.0 via admin/users/add.
|
CWE-352
Origin Validation Error
|
CVE-2018-15845
|
2024-11-21 12:51 |
2018-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247319
|
8.8 |
HIGH
Network
|
damicms
|
damicms
|
An issue was discovered in DamiCMS 6.0.0. There is an CSRF vulnerability that can revise the administrator account's password via /admin.php?s=/Admin/doedit.
|
CWE-352
Origin Validation Error
|
CVE-2018-15844
|
2024-11-21 12:51 |
2018-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247320
|
4.8 |
MEDIUM
Network
|
get-simple
|
getsimple_cms
|
GetSimple CMS 3.3.14 has XSS via the admin/edit.php "Add New Page" field.
|
CWE-79
Cross-site Scripting
|
CVE-2018-15843
|
2024-11-21 12:51 |
2018-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
