CVE-2016-1172 (casebook_plugin)
Cross-site request forgery (CSRF) vulnerability in the Recruit plugin before 0.9.3 for baserCMS allows remote attackers to hijack the authentication of administrators.
Source: CVE-2016-1172 (casebook_plugin)
[월:] 2016년 04월
CVE-2016-1172
CVE-2016-1172
Cross-site request forgery (CSRF) vulnerability in the Recruit plugin before 0.9.3 for baserCMS allows remote attackers to hijack the authentication of administrators.
Source: CVE-2016-1172
CVE-2016-1171 (casebook_plugin)
CVE-2016-1171 (casebook_plugin)
Cross-site scripting (XSS) vulnerability in the Recruit plugin before 0.9.3 for baserCMS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Source: CVE-2016-1171 (casebook_plugin)
CVE-2016-1171
CVE-2016-1171
Cross-site scripting (XSS) vulnerability in the Recruit plugin before 0.9.3 for baserCMS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Source: CVE-2016-1171
CVE-2016-1170 (casebook_plugin)
CVE-2016-1170 (casebook_plugin)
Cross-site request forgery (CSRF) vulnerability in the Casebook plugin before 0.9.4 for baserCMS allows remote attackers to hijack the authentication of administrators.
Source: CVE-2016-1170 (casebook_plugin)
CVE-2016-1170
CVE-2016-1170
Cross-site request forgery (CSRF) vulnerability in the Casebook plugin before 0.9.4 for baserCMS allows remote attackers to hijack the authentication of administrators.
Source: CVE-2016-1170
CVE-2016-1169 (casebook_plugin)
CVE-2016-1169 (casebook_plugin)
Cross-site scripting (XSS) vulnerability in the Casebook plugin before 0.9.4 for baserCMS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Source: CVE-2016-1169 (casebook_plugin)
CVE-2016-1169
CVE-2016-1169
Cross-site scripting (XSS) vulnerability in the Casebook plugin before 0.9.4 for baserCMS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Source: CVE-2016-1169
CVE-2016-0871 (eg2_web_control)
CVE-2016-0871 (eg2_web_control)
Eaton Lighting EG2 Web Control 4.04P and earlier allows remote attackers to read the configuration file, and consequently discover credentials, via a direct request.
Source: CVE-2016-0871 (eg2_web_control)
CVE-2016-0871
CVE-2016-0871
Eaton Lighting EG2 Web Control 4.04P and earlier allows remote attackers to read the configuration file, and consequently discover credentials, via a direct request.
Source: CVE-2016-0871