CVE-2026-6074 Path traversal: '.../...//' in Intrado 911 Emergency Gateway (EGW)

Intrado 911 Emergency Gateway EGW 5.x, 6.x, and 7.x contain a path traversal vulnerability in the downloaddebuglogfile.php endpoint used for Debug Logs downloads. An unauthenticated attacker can manipulate the name parameter to read arbitrary files outside the intended directory...

PT-2026-34724

Name of the Vulnerable Software and Affected Versions Intrado 911 Emergency Gateway affected versions not specified Description A path traversal condition allows an attacker with existing network access to access the EGW management interface without authentication. This could enable a user to rea...

EUVD-2024-17564

Malicious code in bioql PyPI...

CVE-2024-1839

Intrado 911 Emergency Gateway login form is vulnerable to an unauthenticated blind time-based SQL injection, which may allow an unauthenticated remote attacker to execute malicious code, exfiltrate data, or manipulate the database...

CVE-2024-1839

Intrado 911 Emergency Gateway is affected by CVE-2024-1839 due to an unauthenticated blind time-based SQL injection in the login form. The vulnerability allows remote attackers with network access and no authentication to potentially execute malicious code, exfiltrate data, or manipulate the data...

Intrado 911 Emergency Gateway Security Vulnerability

Intrado 911 Emergency Gateway is an on-premise management appliance from Intrado USA. A security vulnerability exists in Intrado 911 Emergency Gateway that stems from a login form that is susceptible to a blind SQL injection attack, which allows an attacker to execute malicious code, steal data, ...