Unspecified Vulnerability in Secomea GateManager (CNVD-2021-18013)

Secomea GateManager is a remote access server product from Secomea, Denmark. A security vulnerability exists in Secomea GateManager versions prior to 9.3, which allows an attacker to exploit the vulnerability to access sensitive cookies...

Secomea GateManager File Upload Vulnerability

Secomea GateManager is a remote access server product from Secomea, Denmark. A file upload vulnerability exists in versions prior to Secomea GateManager 9.4.621054022, which stems from a code upload vulnerability without integrity checking that can be exploited by an attacker to execute malicious...

Secomea GateManager Insecure Direct Object Reference Vulnerability

Secomea GateManager is a remote access server product from Secomea, Denmark. A security vulnerability exists in GateManager versions prior to 9.2c, which stems from an insecure direct object reference vulnerability that can be exploited by an attacker to reset the password of any user in his doma...

Secomea GateManager Cross-Site Request Forgery Vulnerability

GateManager is a VPN server from Secomea. A cross-site request forgery vulnerability exists in the web GUI of Secomea GateManager versions prior to 9.4. An attacker can exploit this vulnerability to execute malicious code...

Secomea GateManager Cross-Site Scripting Vulnerability (CNVD-2021-15490)

GateManager is a VPN server from Secomea. A cross-site scripting vulnerability exists in the web GUI of Secomea GateManager versions prior to 9.4. An attacker can exploit this vulnerability to inject arbitrary javascript code...

Secomea GateManager Cross-Site Scripting Vulnerability

GateManager is a VPN server from Secomea. A cross-site scripting vulnerability exists in the web GUI of Secomea GateManager versions prior to 9.4. The vulnerability stems from improper input validation. An attacker can exploit the vulnerability to execute arbitrary javascript code...

CVE-2020-29029

Improper Input Validation, Cross-site Scripting XSS vulnerability in Web GUI of Secomea GateManager allows an attacker to execute arbitrary javascript code. This issue affects: Secomea GateManager all versions prior to 9.4...

CVE-2020-29030

Cross-Site Request Forgery CSRF vulnerability in web GUI of Secomea GateManager allows an attacker to execute malicious code. This issue affects: Secomea GateManager All versions prior to 9.4...

CVE-2020-29028

Cross-site Scripting XSS vulnerability in web GUI of Secomea GateManager allows an attacker to inject arbitrary javascript code. This issue affects: Secomea GateManager all versions prior to 9.4...

CVE-2020-29029

Improper Input Validation, Cross-site Scripting XSS vulnerability in Web GUI of Secomea GateManager allows an attacker to execute arbitrary javascript code. This issue affects: Secomea GateManager all versions prior to 9.4...

CVE-2020-29028

Cross-site Scripting XSS vulnerability in web GUI of Secomea GateManager allows an attacker to inject arbitrary javascript code. This issue affects: Secomea GateManager all versions prior to 9.4...

CVE-2020-29030

Cross-Site Request Forgery CSRF vulnerability in web GUI of Secomea GateManager allows an attacker to execute malicious code. This issue affects: Secomea GateManager All versions prior to 9.4...

Cross site scripting

Improper Input Validation, Cross-site Scripting XSS vulnerability in Web GUI of Secomea GateManager allows an attacker to execute arbitrary javascript code. This issue affects: Secomea GateManager all versions prior to 9.4...

Cross site scripting

Cross-site Scripting XSS vulnerability in web GUI of Secomea GateManager allows an attacker to inject arbitrary javascript code. This issue affects: Secomea GateManager all versions prior to 9.4...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in web GUI of Secomea GateManager allows an attacker to execute malicious code. This issue affects: Secomea GateManager All versions prior to 9.4...

CVE-2020-29030

CVE-2020-29030 is a CSRF vulnerability in the web GUI of Secomea GateManager, affecting all versions prior to 9.4. The connected records confirm a Cross-Site Request Forgery condition that lets an attacker cause the gateway to execute malicious code via the GateManager web interface. The core aff...

CVE-2020-29030 Insufficient CSRF guards

Cross-Site Request Forgery CSRF vulnerability in web GUI of Secomea GateManager allows an attacker to execute malicious code. This issue affects: Secomea GateManager All versions prior to 9.4...

CVE-2020-29028

CVE-2020-29028 is a Cross-site Scripting (XSS) vulnerability in the web GUI of Secomea GateManager affecting all versions before 9.4. The issue allows an attacker to inject arbitrary JavaScript code via the affected web interface. Connected sources (CNVD/NVD/CVELIST/CNNVD et al.) corroborate the ...

CVE-2020-29028 Reflected XSS issues

Cross-site Scripting XSS vulnerability in web GUI of Secomea GateManager allows an attacker to inject arbitrary javascript code. This issue affects: Secomea GateManager all versions prior to 9.4...

CVE-2020-29029

Summary of CVE-2020-29029 : The vulnerability is an XSS/backdoor-like risk in the Web GUI of Secomea GateManager caused by improper input validation. Affects Secomea GateManager versions before 9.4. Impact stated across sources as arbitrary JavaScript execution in the user’s browser without authe...