padayali-JD

7 exploits Active since Jun 2024
CVE-2024-38526 NOMISEC HIGH SCANNER
pdoc < 14.5.1 - Dependency on Vulnerable Third-Party Component via polyfill.io CDN
pdoc provides API Documentation for Python Projects. Documentation generated with `pdoc --math` linked to JavaScript files from polyfill.io. The polyfill.io CDN has been sold and now serves malicious code. This issue has been fixed in pdoc 14.5.1.
6 stars
CVSS 7.2
CVE-2025-22964 NOMISEC HIGH WRITEUP
DDSN Interactive cm3 Acora CMS 10.1.1 - Unauthenticated Time-Based Blind SQL Injection via Table Parameter
DDSN Interactive cm3 Acora CMS version 10.1.1 has an unauthenticated time-based blind SQL Injection vulnerability caused by insufficient input sanitization and validation in the "table" parameter. This flaw allows attackers to inject malicious SQL queries by directly incorporating user-supplied input into database queries without proper escaping or validation. Exploiting this issue enables unauthorized access, manipulation of data, or exposure of sensitive information, posing significant risks to the integrity and confidentiality of the application.
1 stars
CVSS 8.1
CVE-2026-29598 NOMISEC MEDIUM WRITEUP
DDSN Interactive Acora CMS 10.7.1 - XSS
Multiple stored cross-site scripting (XSS) vulnerabilities in the submit_add_user.asp endpoint of DDSN Interactive Acora CMS v10.7.1 allow attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the First Name and Last Name parameters.
CVSS 5.4
CVE-2026-29597 NOMISEC MEDIUM WRITEUP
DDSN Interactive Acora CMS 10.7.1 - Info Disclosure
DDSN Interactive cm3 Acora CMS version 10.7.1 contains an improper access control vulnerability. An editor-privileged user can access sensitive configuration files by force browsing the “/Admin/file_manager/file_details.asp” endpoint and manipulating the “file” parameter. By referencing specific files (e.g., cm3.xml), the attacker can retrieve system administrator credentials, SMTP settings, database credentials, and other confidential information. The exposure of this information can lead to full administrative access to the CMS, unauthorized access to email services, compromise of backend databases, lateral movement within the network, and long-term persistence by an attacker. This access control bypass poses a critical risk of account takeover, privilege escalation, and systemic compromise of the affected application and its associated infrastructure.
CVSS 6.5
CVE-2025-63314 NOMISEC CRITICAL WRITEUP
DDSN Interactive Acora CMS <10.7.1 - Code Injection
A static password reset token in the password reset function of DDSN Interactive Acora CMS v10.7.1 allows attackers to arbitrarily reset the user password and execute a full account takeover via a replay attack.
CVSS 10.0
CVE-2025-25968 NOMISEC MEDIUM WRITEUP
DDSN Interactive cm3 Acora CMS 10.1.1 - Improper Access Control via File Parameter
DDSN Interactive cm3 Acora CMS version 10.1.1 contains an improper access control vulnerability. An editor-privileged user can access sensitive information, such as system administrator credentials, by force browsing the endpoint and exploiting the 'file' parameter. By referencing specific files (e.g., cm3.xml), attackers can bypass access controls, leading to account takeover and potential privilege escalation.
CVSS 6.0
CVE-2025-25967 NOMISEC HIGH WRITEUP
Acora CMS 10.1.1 - Cross-Site Request Forgery
Acora CMS version 10.1.1 is vulnerable to Cross-Site Request Forgery (CSRF). This flaw enables attackers to trick authenticated users into performing unauthorized actions, such as account deletion or user creation, by embedding malicious requests in external content. The lack of CSRF protections allows exploitation via crafted requests.
CVSS 8.8