Lucene search
K

3 matches found

BDU FSTEC
BDU FSTEC
added 2019/09/10 12:0 a.m.6 views

The vulnerability of the platform for automating operations in healthcare institutions of the Russian Federation’s entity Tra: The lack of protection for the website structure allows attackers to carry out cross-site scripting attacks.

The vulnerability of the platform for automating operations in healthcare institutions of the Russian Federation’s Tra:Pharmaceutical supply relates to the failure to take measures to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor, operating remotely...

7.5CVSS5.2AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/09/10 12:0 a.m.7 views

The vulnerability of the platform for automating the operations of healthcare institutions in the RF entity Tra: The drug supply issue is related to the lack of a mechanism to limit the number of authentication attempts, allowing a perpetrator to select a user password.

The vulnerability of the platform for automating operations in healthcare institutions of the Russian Federation’s Tra: Pharmaceutical supply is related to deficiencies in the mechanism for limiting the number of authentication attempts. Exploiting this vulnerability could allow a malicious actor...

7.5CVSS5.5AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/09/10 12:0 a.m.5 views

The vulnerability of the platform for automating operations in healthcare institutions of the Russian Federation’s entity Tra: The lack of a CSRF token in web forms allows actions to be performed on behalf of users, including administrators.

The vulnerability of the platform for automating operations in healthcare institutions of the Russian Federation’s Tra: Pharmaceutical Supply relates to the absence of a CSRF token in web forms. Exploiting this vulnerability allows a malicious actor to execute cross-site requests on behalf of...

7.5CVSS5.5AI score
Exploits0Affected Software1
Rows per page
Query Builder