74 matches found
EUVD-2019-6163
Malware in sbrugna...
EUVD-2019-6016
Malware in sbrugna...
EUVD-2019-6013
Malware in sbrugna...
EUVD-2019-6012
Malware in sbrugna...
EUVD-2019-6165
Malware in sbrugna...
EUVD-2019-6167
Malware in sbrugna...
EUVD-2019-6017
Malware in sbrugna...
EUVD-2019-6166
Malware in sbrugna...
EUVD-2019-6014
Malware in sbrugna...
EUVD-2019-6015
Malware in sbrugna...
EUVD-2019-6164
Malware in sbrugna...
CVE-2019-14915
An issue was discovered in PRiSE adAS 1.7.0. Certificate data are not properly escaped. This leads to XSS when submitting a rogue certificate...
CVE-2019-14914
An issue was discovered in PRiSE adAS 1.7.0. The path is not properly escaped in the medatadatadel method, leading to an arbitrary file read and deletion via Directory Traversal...
CVE-2019-14912
An issue was discovered in PRiSE adAS 1.7.0. The OPENSSO module does not properly check the goto parameter, leading to an open redirect that leaks the session cookie...
CVE-2019-14911
An issue was discovered in PRiSE adAS 1.7.0. The OPENSSO module does not properly escape output on error, leading to reflected XSS...
CVE-2019-14916
An issue was discovered in PRiSE adAS 1.7.0. A file's format is not properly checked, leading to an unrestricted file upload...
CVE-2019-15087
An issue was discovered in PRiSE adAS 1.7.0. An authenticated user can change the function used to hash passwords to any function, leading to remote code execution...
CVE-2019-15088
An issue was discovered in PRiSE adAS 1.7.0. Password hashes are compared using the equality operator. Thus, under specific circumstances, it is possible to bypass login authentication...
CVE-2019-15086
An issue was discovered in PRiSE adAS 1.7.0. The newentityID parameter is not properly escaped, leading to a reflected XSS in the error message...
CVE-2019-14913
An issue was discovered in PRiSE adAS 1.7.0. Log data are not properly escaped, leading to persistent XSS in the administration panel...