4 matches found
SISQUALWFM 7.1.319.103 - Host Header Injection Vulnerability
Exploit Title: SISQUALWFM 7.1.319.103 Host Header Injection Discovered Date: 17/03/2023 Reported Date: 17/03/2023 Resolved Date: 13/10/2023 Exploit Author: Omer Shaik unknownexploit Vendor Homepage: https://www.sisqualwfm.com Version: 7.1.319.103 Tested on: SISQUAL WFM 7.1.319.103 Affected Versio...
SISQUAL WFM 7.1.319.103 Host Header Injection Vulnerability
Exploit Title: SISQUAL WFM 7.1.319.103 Host Header Injection Exploit Author: Omer Shaik unknownexploit Vendor Homepage: https://www.sisqualwfm.com Version: 7.1.319.103 Tested on: SISQUAL WFM 7.1.319.103 Affected Version: sisqualWFM - 7.1.319.103 Fixed Version: sisqualWFM - 7.1.319.111 CVE :...
CVE-2023-36085
creationtimestamp| type| source ---|---|--- 2023-10-25 22:45:18+00:00| seen| https://t.me/cibsecurity/72848...
CVE-2023-36085
The CVE-2023-36085 issue affects SISQUAL WFM versions 7.1.319.103 through 7.1.319.111, where a Host Header Injection vulnerability exists in the "/sisqualIdentityServer/core/" endpoint. By manipulating the HTTP Host header, an attacker can alter webpage links and redirect users to arbitrary or ma...