Windu CMS 2.2 allows CSRF via admin/users/?mn=admin.message.error to add an admin account.
View Full Alert
Related Posts
CVE-2013-7472The "Count per Day" plugin before 3.2.6 for WordPress allows XSS via the wp-admin/?page=cpd_metaboxes daytoshow parameter. View Full Alert
CVE-2013-2752 (raidiator)Cross-site request forgery (CSRF) vulnerability in frontview/lib/np_handler.pl in NETGEAR ReadyNAS RAIDiator before 4.1.12 and 4.2.x before 4.2.24 allows remote attackers to hijack the authentication of users. View Full Alert
CVE-2013-2751 (raidiator)Eval injection vulnerability in frontview/lib/np_handler.pl in the FrontView web interface in NETGEAR ReadyNAS RAIDiator before 4.1.12 and 4.2.x before 4.2.24 allows remote attackers to execute arbitrary Perl code via a…
