9 matches found
EUVD-2016-5580
Malware in sbrugna...
ASB-A-376259166
In multiple locations, there is a possible way to access content across user profiles due to URI double encoding. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
PT-2024-33513 · Dressroom · Dressroom
Name of the Vulnerable Software and Affected Versions: Dressroom versions prior to SMR Nov-2024 Release 1 Description: The issue is related to improper input validation, allowing physical attackers to access data across multiple user profiles. Recommendations: For versions prior to SMR Nov-2024...
CVE-2023-45396
An Insecure Direct Object Reference IDOR vulnerability leads to events profiles access in Elenos ETG150 FM transmitter running on version 3.12...
Design/Logic Flaw
An Insecure Direct Object Reference IDOR vulnerability leads to events profiles access in Elenos ETG150 FM transmitter running on version 3.12...
CVE-2023-45396
An Insecure Direct Object Reference IDOR vulnerability leads to events profiles access in Elenos ETG150 FM transmitter running on version 3.12...
CVE-2023-45396
An Insecure Direct Object Reference IDOR vulnerability leads to events profiles access in Elenos ETG150 FM transmitter running on version 3.12...
CVE-2022-27968
Cynet 360 Web Portal before v4.5 was discovered to allow attackers to access a list of monitored files and profiles via a crafted GET request sent to /WebApp/SettingsFileMonitor/GetFileMonitorProfiles...
Siemens SINEC NMS 信息泄露漏洞
SINEC NMS is a network management system introduced by Siemens for monitoring and managing industrial networks.A user profile download vulnerability exists in versions prior to SINEC NMS 1.0 SP2 Update 1. An attacker could exploit this vulnerability to download any user's user profile, which coul...