15 matches found
CVE-2023-4103 Multiple vulnerabilities in IDM Sistemas QSige
QSige statistics are affected by a remote SQLi vulnerability. It has been identified that the web application does not correctly filter input parameters, allowing SQL injections, DoS or information disclosure. As a prerequisite, it is necessary to log into the application...
CVE-2023-4102 Multiple vulnerabilities in IDM Sistemas QSige
QSige login SSO does not have an access control mechanism to verify whether the user requesting a resource has sufficient permissions to do so. As a prerequisite, it is necessary to log into the application...
CVE-2023-4101 Multiple vulnerabilities in IDM Sistemas QSige
The QSige login SSO does not have an access control mechanism to verify whether the user requesting a resource has sufficient permissions to do so. As a prerequisite, it is necessary to log into the application...
CVE-2023-4101 Multiple vulnerabilities in IDM Sistemas QSige
The QSige login SSO does not have an access control mechanism to verify whether the user requesting a resource has sufficient permissions to do so. As a prerequisite, it is necessary to log into the application...
CVE-2023-4100 Multiple vulnerabilities in IDM Sistemas QSige
Allows an attacker to perform XSS attacks stored on certain resources. Exploiting this vulnerability can lead to a DoS condition, among other actions...
CVE-2023-4100 Multiple vulnerabilities in IDM Sistemas QSige
Allows an attacker to perform XSS attacks stored on certain resources. Exploiting this vulnerability can lead to a DoS condition, among other actions...
CVE-2023-4099 Multiple vulnerabilities in IDM Sistemas QSige
The QSige Monitor application does not have an access control mechanism to verify whether the user requesting a resource has sufficient permissions to do so. As a prerequisite, it is necessary to log into the application...
CVE-2023-4099 Multiple vulnerabilities in IDM Sistemas QSige
The QSige Monitor application does not have an access control mechanism to verify whether the user requesting a resource has sufficient permissions to do so. As a prerequisite, it is necessary to log into the application...
CVE-2023-4098 Multiple vulnerabilities in IDM Sistemas QSige
It has been identified that the web application does not correctly filter input parameters, allowing SQL injections, DoS or information disclosure. As a prerequisite, it is necessary to log into the application...
CVE-2023-4097 Multiple vulnerabilities in IDM Sistemas QSige
The file upload functionality is not implemented correctly and allows uploading of any type of file. As a prerequisite, it is necessary for the attacker to log into the application with a valid username...
CVE-2023-4097 Multiple vulnerabilities in IDM Sistemas QSige
The file upload functionality is not implemented correctly and allows uploading of any type of file. As a prerequisite, it is necessary for the attacker to log into the application with a valid username...
IDM Sistemas QSige SQL Injection Vulnerability
IDM Sistemas QSige is a communication management system from IDM Sistemas. IDM Sistemas QSige suffers from a SQL injection vulnerability that stems from a web application that does not properly filter input parameters, resulting in SQL injection, DoS, or information disclosure...
IDM Sistemas QSige Security Vulnerability
IDM Sistemas QSige is a communication management system from IDM Sistemas. A security vulnerability exists in IDM Sistemas QSige Monitor that stems from the application not having an access control mechanism to verify that the user requesting the resource has sufficient privileges to perform this...
IDM Sistemas QSige Security Vulnerability
IDM Sistemas QSige is a communication management system from IDM Sistemas. A security vulnerability exists in QSige login SSO that stems from the absence of an access control mechanism to verify that the user requesting the resource has sufficient privileges to perform this operation...
IDM Sistemas QSige Cross-Site Scripting Vulnerability
IDM Sistemas QSige is a communication management system from IDM Sistemas. IDM Sistemas QSige suffers from a cross-site scripting vulnerability that stems from allowing an attacker to perform XSS attacks against certain resources, resulting in a DoS condition as well as other operations...