EUVD-2017-4268

Malware in sbrugna...

CVE-2017-12729

A SQL Injection issue was discovered in Moxa SoftCMS Live Viewer through 1.6. An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability has been identified. Attackers can exploit this vulnerability to access SoftCMS without knowing the user's password...

Sql injection

A SQL Injection issue was discovered in Moxa SoftCMS Live Viewer through 1.6. An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability has been identified. Attackers can exploit this vulnerability to access SoftCMS without knowing the user's password...

CVE-2017-5170

An Uncontrolled Search Path Element issue was discovered in Moxa SoftNVR-IA Live Viewer, Version 3.30.3122 and prior versions. An uncontrolled search path element DLL Hijacking vulnerability has been identified. To exploit this vulnerability, an attacker could rename a malicious DLL to meet the...

CVE-2017-12729

A SQL Injection issue was discovered in Moxa SoftCMS Live Viewer through 1.6. An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability has been identified. Attackers can exploit this vulnerability to access SoftCMS without knowing the user's password...

CVE-2017-5170

An Uncontrolled Search Path Element issue was discovered in Moxa SoftNVR-IA Live Viewer, Version 3.30.3122 and prior versions. An uncontrolled search path element DLL Hijacking vulnerability has been identified. To exploit this vulnerability, an attacker could rename a malicious DLL to meet the...

CVE-2017-5170

Summary: CVE-2017-5170 affects Moxa SoftNVR-IA Live Viewer (Version 3.30.3122 and earlier). It stems from an Uncontrolled Search Path Element (DLL Hijacking) vulnerability where a malicious DLL could be loaded if placed in the application’s default install location, allowing code execution at the...

CVE-2017-12729

A SQL Injection issue was discovered in Moxa SoftCMS Live Viewer through 1.6. An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability has been identified. Attackers can exploit this vulnerability to access SoftCMS without knowing the user's password...

Moxa SoftCMS Live Viewer SQL Injection Vulnerability

Moxa SoftCMS Live Viewer is a software package developed by Moxa for remote monitoring and debugging of industrial automation systems. A SQL injection vulnerability exists in Moxa SoftCMS Live Viewer 1.6 and earlier versions. A remote attacker can exploit this vulnerability to access SoftCMS Live...

Moxa SoftCMS Live Viewer SQL Injection Vulnerability

Moxa SoftCMS Live Viewer is a video surveillance software designed for industrial automation systems. A SQL injection vulnerability exists in Moxa SoftCMS Live Viewer 1.6 and earlier versions, which can be exploited by an attacker to access SoftCMS without knowing the user's password...

Moxa SoftCMS Live Viewer

CVSS v3 9.8 AFFECTED PRODUCTS The following versions of SoftCMS Live Viewer, a video surveillance software designed for industrial automation systems, are affected: SoftCMS Live Viewer, Version 1.6 and prior versions. IMPACT Successful exploitation of this vulnerability could allow an...

Moxa SoftNVR-IA Live Viewer DLL Local Arbitrary Code Execution Vulnerability

Moxa SoftNVR-IA Live Viewer is a video surveillance software package developed by Moxa for industrial automation systems. A DLL local arbitrary code execution vulnerability exists in Moxa SoftNVR-IA Live Viewer 3.30.3122 and earlier versions, which stems from the program failing to properly filte...

Moxa SoftNVR-IA Live Viewer

CVSS v3 7.2 Vendor: Moxa Equipment: SoftNVR-IA Live Viewer Vulnerability: Uncontrolled Search Path Element AFFECTED PRODUCTS The following versions of SoftNVR-IA Live Viewer, a video surveillance software designed for industrial automation systems, are affected: SoftNVR-IA Live Viewer, Version...