perform request software vulnerabilities
vulnerabilities.aspcode.net
Searching perform request software vulnerabilities
Orange Web Server 2.1, based on GoAhead, allows
attacker
|
GoAhead
|
perform
|
service
|
include
|
version
|
request
|
denial
|
Orange
|
Server
|
remote
|
allows
|
based
|
does
|
HTTP
|
Web
|
not
|
via
|
GET
|
Orange Web Server 2.1, based on GoAhead, allows a remote attacker to perform a denial of service via an HTTP GET request that does not include the HTTP version.
Cross-site request forgery (CSRF) vulnerability
Cross-site
|
forgery
|
request
|
Cross-site request forgery (CSRF) vulnerability in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allows remote attackers to perform unauthorized actions as authenticated MediaWiki users.
Webmasters-Debutants WD Guestbook 2.8 allows re
Webmasters-Debutants
|
authentication
|
administrator
|
attackers
|
Guestbook
|
certain
|
request
|
actions
|
perform
|
allows
|
direct
|
bypass
|
remote
|
POST
|
HTTP
|
via
|
Webmasters-Debutants WD Guestbook 2.8 allows remote attackers to bypass authentication and perform certain administrator actions via a direct HTTP POST request to (1) ajout_admin2.php or (2) suppr.php.
Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site
|
Forgery
|
Request
|
Cross-Site Request Forgery (CSRF) vulnerability in Help Center Live allows remote attackers to perform actions as the administrator via a link or IMG tag to view.php.
Hosting Controller 6.1 Hotfix 2.1 allows remote
AccountActionsasp
|
UpdateCreditLimit
|
authenticated
|
unauthorized
|
CreditLimit
|
Controller
|
modifying
|
parameter
|
request
|
actions
|
Hosting
|
perform
|
direct
|
remote
|
allows
|
credit
|
action
|
Hotfix
|
limit
|
users
|
such
|
via
|
Hosting Controller 6.1 Hotfix 2.1 allows remote authenticated users to perform unauthorized actions, such as modifying the credit limit, via a direct request to AccountActions.asp and modifying the CreditLimit parameter in an UpdateCreditLimit action.
Cross-site request forgery (CSRF) vulnerability
Cross-site
|
forgery
|
request
|
Cross-site request forgery (CSRF) vulnerability in Serendipity 0.8.4 and earlier allows remote attackers to perform unauthorized actions as a logged in user via a link or IMG tag to serendipity_admin.php.
Cross-site request forgery (CSRF) vulnerability
Cross-site
|
forgery
|
request
|
Cross-site request forgery (CSRF) vulnerability in the Entry Manager in Serendipity before 1.0-beta3 allows remote attackers to perform unauthorized actions as a logged-in user via a link or IMG tag.
Cross-site request forgery (CSRF) vulnerability
Cross-site
|
forgery
|
request
|
Cross-site request forgery (CSRF) vulnerability in the communicate function in estmaster.c for Hyper Estraier before 1.3.3 allows remote attackers to perform unauthorized actions as other users via unknown vectors.
Cross-site request forgery (CSRF) vulnerability
Cross-site
|
forgery
|
request
|
Cross-site request forgery (CSRF) vulnerability in Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4 allows remote attackers to perform unauthorized actions as an arbitrary user via unspecified vectors.
Cross-site request forgery (CSRF) vulnerability
Cross-site
|
forgery
|
request
|
Cross-site request forgery (CSRF) vulnerability in Edgewall Trac 0.10 and earlier allows remote attackers to perform unauthorized actions as other users via unknown vectors.
The NetBSD-current kernel before 20061028 does
NetBSD-current
|
before
|
kernel
|
The NetBSD-current kernel before Saturday, October 28, 2006 does not properly perform bounds checking of an unspecified userspace parameter in the ptrace system call during a PT_DUMPCORE request, which allows local users to have an unknown impact.
Cross-site request forgery (CSRF) vulnerability
Cross-site
|
forgery
|
request
|
Cross-site request forgery (CSRF) vulnerability in SPINE allows remote attackers to perform unauthorized actions as administrators via unspecified vectors. NOTE: some of these details are obtained from third party information.
(1) admin/adminlien.php3 and (2) admin/modif.ph
(1) admin/adminlien.php3 and (2) admin/modif.php3 in liens_dynamiques 2.1 do not require authentication, which allows remote attackers to perform unauthorized administrative actions using a direct request.
Cross-site request forgery (CSRF) vulnerability
Cross-site
|
forgery
|
request
|
Cross-site request forgery (CSRF) vulnerability in MailEnable Professional before 2.37 allows remote attackers to modify arbitrary configurations and perform unauthorized actions as arbitrary users via a link or IMG tag.
Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site
|
Forgery
|
Request
|
Cross-Site Request Forgery (CSRF) vulnerability in admin/admin.adm.php in Jportal 2.3.1, and possibly earlier, allows remote attackers to perform privileged actions as administrators by tricking the admin into accessing a URL with modified arguments to admin/admin.adm.php.
Till Gerken phpPolls 1.0.3 allows remote attack
phpPolls
|
Gerken
|
Till
|
Till Gerken phpPolls 1.0.3 allows remote attackers to bypass authentication and perform certain administrative actions via a direct request to phpPollAdmin.php3. NOTE: this issue might subsume CVE-2006-3764.
Cross-site request forgery (CSRF) vulnerability
Cross-site
|
forgery
|
request
|
Cross-site request forgery (CSRF) vulnerability in jmx-console/HtmlAdaptor in JBoss allows remote attackers to perform privileged actions as administrators via certain MBean operations, a different vulnerability than CVE-2006-3733.
Cross-site request forgery (CSRF) vulnerability
Cross-site
|
forgery
|
request
|
Cross-site request forgery (CSRF) vulnerability in the AdminPanel in WordPress 2.1.1 and earlier allows remote attackers to perform privileged actions as administrators, as demonstrated using the delete action in wp-admin/post.php. NOTE: this issue can be leveraged to perform cross-site scripting (XSS) attacks and steal cookies via the post parameter.
Multiple cross-site request forgery (CSRF) vuln
cross-site
|
Multiple
|
forgery
|
request
|
Multiple cross-site request forgery (CSRF) vulnerabilities in TKS Banking Solutions ePortfolio 1.0 Java allow remote attackers to perform unspecified restricted actions in the context of certain accounts by bypassing the client-side protection scheme.
Multiple cross-site request forgery (CSRF) vuln
cross-site
|
Multiple
|
forgery
|
request
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Database Administration (dba) module 4.6.x-*, and before 4.7.x-1.2 in the 4.7.x-1.* series, for Drupal allow remote attackers to perform unauthorized actions as an arbitrary user, a related issue to CVE-2006-5476.
Software vulnerabilities results 1 to 20 of 1788
Page:
1
2
3
4
5
...
90
►