12 matches found
EUVD-2020-20860
Malware in sbrugna...
CVE-2020-28401
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user to access WIP details about jobs he should not have access to...
Star Computer Star Practice Management Web Access Control Error Vulnerability (CNVD-2021-56824)
Star Computer Star Practice Management Web is a web service used for time-based billing by Star Computer UK.An access control error vulnerability exists in Star Practice Management Web version 2019.2.0.6, which could be exploited by an attacker to The vulnerability can be exploited to change the...
CVE-2020-28403
A Cross-Site Request Forgery CSRF vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an attacker to change the privileges of any user of the application. This can be used to grant himself administrative role or remove the administrative account of the application...
CVE-2020-28404
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user to access the Billing page without the appropriate privileges...
CVE-2020-28404
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user to access the Billing page without the appropriate privileges...
CVE-2020-28402
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user to access Launcher Configuration Panel...
Cross site request forgery (csrf)
A Cross-Site Request Forgery CSRF vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an attacker to change the privileges of any user of the application. This can be used to grant himself administrative role or remove the administrative account of the application...
CVE-2020-28405
CVE-2020-28405 concerns an improper authorization flaw in Star Practice Management Web version 2019.2.0.6. An unauthorized user can change privileges for any user, enabling self-authorization to the administrative role or removing all administrative accounts. The vulnerability is described consis...
Star Computer Star Practice Management Web 跨站请求伪造漏洞
Star Computer Star Practice Management Web is a web service used for time-based billing by Star Computer UK.A cross-site request forgery vulnerability exists in Star Practice Management Web version 2019.2.0.6, which could be exploited by an attacker to The vulnerability can be exploited to change...
Star Computer Star Practice Management Web 访问控制错误漏洞
Star Computer Star Practice Management Web is a web service used for time-based billing by Star Computer UK.An access control error vulnerability exists in Star Practice Management Web version 2019.2.0.6, which could be exploited by an attacker to The vulnerability can be exploited to change the...
Star Computer Star Practice Management Web 访问控制错误漏洞
Star Computer Star Practice Management Web is a web service applied to billing based on time by Star Computer UK.An access control error vulnerability exists in Star Practice Management Web version 2019.2.0.6, which could be exploited by an unauthorized The vulnerability can be exploited by an...