Holger Schurig Destar vulnerabilities
2 known vulnerabilities affecting holger_schurig/destar.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2008-6539P3MEDIUMCVSS 6.5PoCv0.2.2-52009-03-30
CVE-2008-6539 [MEDIUM] CWE-94 CVE-2008-6539: Static code injection vulnerability in user/settings/ in DeStar 0.2.2-5 allows remote authenticated
Static code injection vulnerability in user/settings/ in DeStar 0.2.2-5 allows remote authenticated users to add arbitrary administrators and inject arbitrary Python code into destar_cfg.py via a crafted pin parameter.
nvd
CVE-2008-6538P4MEDIUMCVSS 5.0PoCv0.2.2-52009-03-30
CVE-2008-6538 [MEDIUM] CWE-20 CVE-2008-6538: DeStar 0.2.2-5 allows remote attackers to add arbitrary users via a direct request to config/add/Cfg
DeStar 0.2.2-5 allows remote attackers to add arbitrary users via a direct request to config/add/CfgOptUser.
nvd