17 matches found
EUVD-2022-41334
Malicious code in bioql PyPI...
CVE-2022-38770
The mobile application in Transtek Mojodat FAM Fixed Asset Management 2.4.6 allows remote attackers to fetch other users' data upon a successful login request...
CVE-2022-38769
The mobile application in Transtek Mojodat FAM Fixed Asset Management 2.4.6 allows remote attackers to fetch cleartext passwords upon a successful login request...
CVE-2022-38770
The mobile application in Transtek Mojodat FAM Fixed Asset Management 2.4.6 allows remote attackers to fetch other users' data upon a successful login request...
CVE-2022-38769
The mobile application in Transtek Mojodat FAM Fixed Asset Management 2.4.6 allows remote attackers to fetch cleartext passwords upon a successful login request...
CVE-2022-38768
The mobile application in Transtek Mojodat FAM Fixed Asset Management 2.4.6 allows remote attackers to bypass authorization...
CVE-2022-38769
The mobile application in Transtek Mojodat FAM Fixed Asset Management 2.4.6 allows remote attackers to fetch cleartext passwords upon a successful login request...
CVE-2022-38771
The mobile application in Transtek Mojodat FAM Fixed Asset Management 2.4.6 allows remote attackers to send SCRIPT tags as injected input to the API request...
CVE-2022-38768
The mobile application in Transtek Mojodat FAM Fixed Asset Management 2.4.6 allows remote attackers to bypass authorization...
Cross site request forgery (csrf)
The mobile application in Transtek Mojodat FAM Fixed Asset Management 2.4.6 allows remote attackers to fetch other users' data upon a successful login request...
CVE-2022-38770
The mobile application in Transtek Mojodat FAM Fixed Asset Management 2.4.6 allows remote attackers to fetch other users' data upon a successful login request...
CVE-2022-38770
The CVE relates to Transtek Mojodat FAM (Fixed Asset Management) v2.4.6, where a vulnerability allows remote attackers to fetch other users’ data after a successful login. The connected sources confirm the affected product and version and describe the impact as exposure of other users’ data, but ...
Transtek Mojodat FAM SQL注入漏洞
Transtek Mojodat FAM is a Fixed Asset Management software from Transtek Lebanon. A security vulnerability exists in Transtek Mojodat FAM Fixed Asset Management version 2.4.6, which stems from a vulnerability that allows remote attackers to send SCRIPT tags as injected input to API requests...
Transtek Mojodat FAM 安全漏洞
Transtek Mojodat FAM is a fixed asset management software from Transtek Lebanon. A security vulnerability exists in Transtek Mojodat FAM Fixed Asset Management version 2.4.6, which originates from a vulnerability that could allow a remote attacker to gain access to other user's data after a...
Transtek Mojodat FAM 安全漏洞
Transtek Mojodat FAM is a fixed asset management software from Transtek Lebanon. A security vulnerability exists in Transtek Mojodat FAM Fixed Asset Management version 2.4.6, which originates from allowing remote attackers to bypass authorization...
PT-2022-24562 · Transtek · Transtek Mojodat Fam
Name of the Vulnerable Software and Affected Versions: Transtek Mojodat FAM Fixed Asset Management version 2.4.6 Description: The issue allows remote attackers to fetch other users' data upon a successful login request. Recommendations: For Transtek Mojodat FAM Fixed Asset Management version 2.4....
Emerson AMS Device Manager Local SQL Injection Vulnerability
Emerson Electric AMS Device Manager is a fixed asset management software. The software provides predictive diagnostics, device configuration management, and more. An SQL injection vulnerability exists in AMS Device Manager 12.5 and earlier versions, which can be exploited by an attacker to gain...