Filtered by vendor Schben
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2019-14987 | 1 Schben | 1 Framework | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
Adive Framework through 2.0.7 is affected by XSS in the Create New Table and Create New Navigation Link functions. | |||||
CVE-2019-14347 | 1 Schben | 1 Adive | 2024-11-21 | 6.5 MEDIUM | 8.8 HIGH |
Internal/Views/addUsers.php in Schben Adive 2.0.7 allows remote unprivileged users (editor or developer) to create an administrator account via admin/user/add, as demonstrated by a Python PoC script. | |||||
CVE-2019-14346 | 1 Schben | 1 Adive | 2024-11-21 | 4.3 MEDIUM | 8.8 HIGH |
Internal/Views/config.php in Schben Adive 2.0.7 allows admin/config CSRF to change a user password. |