Lucene search
K

47 matches found

CVE
CVE
added 2022/03/07 8:48 p.m.107 views

CVE-2022-22835

OverIT Geocall prior to version 8.0 is affected by an XXE vulnerability in the XSLT/Test Trasformazione XSL feature. An authenticated user enabling this functionality can trigger an XXE issue and read arbitrary files from the file system. Affected component: Geocall’s XSLT processing; root cause:...

6.5CVSS6.3AI score0.145EPSS
Exploits2References4Affected Software1
Positive Technologies
Positive Technologies
added 2022/03/07 12:0 a.m.1 views

PT-2022-15702 · Overit · Overit Geocall

Name of the Vulnerable Software and Affected Versions: OverIT Geocall versions prior to 8.0 Description: An issue was discovered that allows an authenticated user with the Test Trasformazione XSL functionality enabled to exploit a XSLT Injection vulnerability. This could allow attackers to achiev...

8.8CVSS9AI score0.145EPSS
Exploits2References6
Positive Technologies
Positive Technologies
added 2022/03/07 12:0 a.m.4 views

PT-2022-15703 · Overit · Overit Geocall

Name of the Vulnerable Software and Affected Versions: OverIT Geocall versions prior to 8.0 Description: An issue was discovered that allows an authenticated user with the Test Trasformazione XSL functionality enabled to exploit a vulnerability. This can lead to reading arbitrary files from the...

8.8CVSS9AI score0.145EPSS
Exploits2References7
CNVD
CNVD
added 2019/04/02 12:0 a.m.5 views

OverIT Geocall Access Control Error Vulnerability

OverIT Geocall is a field service management solution from OverIT Italy. An Access Control Error vulnerability exists in version 6.3 prior to OverIT Geocall build 2:346977, which arises from a network system or product that does not properly restrict access to resources from unauthorized roles. A...

9.8CVSS6.4AI score0.01644EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/02 12:0 a.m.4 views

OverIT Geocall Log Management Directory Traversal Vulnerability

OverIT Geocall is a field service management solution from OverIT Italy. A path traversal vulnerability exists in version 6.3 prior to OverIT Geocall build 2:346977, which arises from a failure of a networked system or product to properly filter for specific elements in the path of a resource or...

7.5CVSS6.7AI score0.02245EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/02 12:0 a.m.4 views

OverIT Geocall Cross-Site Scripting Vulnerability

OverIT Geocall is a field service management solution from OverIT Italy. A cross-site scripting vulnerability exists in version 6.3 prior to OverIT Geocall build 2:346977, which stems from the lack of proper validation of client-side data by the WEB application. An attacker can exploit the...

6.1CVSS6.3AI score0.00901EPSS
Exploits0References1
NVD
NVD
added 2019/04/01 4:29 p.m.20 views

CVE-2019-5891

An issue was discovered in OverIT Geocall 6.3 before build 2:346977. An unauthenticated servlet allows an attacker to obtain a cookie of an authenticated user, and login to the web application...

9.8CVSS9.3AI score0.01644EPSS
Exploits0References2
NVD
NVD
added 2019/04/01 4:29 p.m.12 views

CVE-2019-5889

An log-management directory traversal issue was discovered in OverIT Geocall 6.3 before build 2:346977...

7.5CVSS7.5AI score0.02245EPSS
Exploits0References2
OSV
OSV
added 2019/04/01 4:29 p.m.6 views

CVE-2019-5890

An issue was discovered in OverIT Geocall 6.3 before build 2:346977. Weak authentication and session management allows an authenticated user to obtain access to the Administrative control panel and execute administrative functions...

8.8CVSS7.4AI score0.01829EPSS
Exploits0References2
OSV
OSV
added 2019/04/01 4:29 p.m.3 views

CVE-2019-5888

Multiple XSS vulnerabilities were discovered in OverIT Geocall 6.3 before build 2:346977...

6.1CVSS6.4AI score0.00901EPSS
Exploits0References2
OSV
OSV
added 2019/04/01 4:29 p.m.3 views

CVE-2019-5889

An log-management directory traversal issue was discovered in OverIT Geocall 6.3 before build 2:346977...

7.5CVSS7.1AI score0.02245EPSS
Exploits0References2
Prion
Prion
added 2019/04/01 4:29 p.m.20 views

Code injection

An issue was discovered in OverIT Geocall 6.3 before build 2:346977. An unauthenticated servlet allows an attacker to obtain a cookie of an authenticated user, and login to the web application...

5CVSS9.1AI score0.01644EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/04/01 4:29 p.m.14 views

CVE-2019-5888

Multiple XSS vulnerabilities were discovered in OverIT Geocall 6.3 before build 2:346977...

6.1CVSS6.3AI score0.00901EPSS
Exploits0References2
Prion
Prion
added 2019/04/01 4:29 p.m.12 views

Design/Logic Flaw

Multiple XSS vulnerabilities were discovered in OverIT Geocall 6.3 before build 2:346977...

4.3CVSS6.2AI score0.00901EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2019/04/01 4:29 p.m.12 views

Directory traversal

An log-management directory traversal issue was discovered in OverIT Geocall 6.3 before build 2:346977...

5CVSS7.5AI score0.02245EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/04/01 4:29 p.m.16 views

CVE-2019-5890

An issue was discovered in OverIT Geocall 6.3 before build 2:346977. Weak authentication and session management allows an authenticated user to obtain access to the Administrative control panel and execute administrative functions...

9CVSS8.8AI score0.01829EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/04/01 3:23 p.m.22 views

CVE-2019-5891

An issue was discovered in OverIT Geocall 6.3 before build 2:346977. An unauthenticated servlet allows an attacker to obtain a cookie of an authenticated user, and login to the web application...

9.3AI score0.01644EPSS
Exploits0References2
CVE
CVE
added 2019/04/01 3:23 p.m.61 views

CVE-2019-5891

The CVE-2019-5891 issue affects OverIT Geocall 6.3 prior to build 2:346977. An unauthenticated servlet allows an attacker to obtain a cookie of an authenticated user and log into the web application, compromising session integrity and potentially exposing user data. The vulnerability arises in th...

9.8CVSS9.1AI score0.01644EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/04/01 3:19 p.m.48 views

CVE-2019-5890

Affected software: OverIT Geocall 6.3 (before build 2:346977). Vulnerability: Weak authentication and session management allow an authenticated user to access the Administrative control panel and execute administrative functions. Root cause (as described): Improper session handling enabling eleva...

9CVSS8.7AI score0.01829EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/04/01 3:19 p.m.21 views

CVE-2019-5890

An issue was discovered in OverIT Geocall 6.3 before build 2:346977. Weak authentication and session management allows an authenticated user to obtain access to the Administrative control panel and execute administrative functions...

8.8AI score0.01829EPSS
Exploits0References2
Rows per page
Query Builder