PT-2018-3874 · Pulnix +7 · Pulnix +10

Name of the Vulnerable Software and Affected Versions: TBK DVR4104 and DVR4216 devices, as well as Novo, CeNova, QSee, Pulnix, XVR 5 in 1, Securus, Night OWL, DVR Login, HVR Login, and MDVR Login Description: The issue allows remote attackers to bypass authentication via a "Cookie: uid=admin"...

CVE-2018-9148

Western Digital WD My Cloud v04.05.00-320 devices embed the session token aka PHPSESSID in filenames, which makes it easier for attackers to bypass authentication by listing a directory. NOTE: this can be exploited in conjunction with CVE-2018-7171 for remote authentication bypass within a produc...

Authentication flaw

Western Digital WD My Cloud v04.05.00-320 devices embed the session token aka PHPSESSID in filenames, which makes it easier for attackers to bypass authentication by listing a directory. NOTE: this can be exploited in conjunction with CVE-2018-7171 for remote authentication bypass within a produc...

CVE-2018-9148

CVE-2018-9148 details (WD My Cloud) : WD My Cloud devices with version v04.05.00-320 embed the session token (PHPSESSID) in filenames, enabling directory listing and authentication bypass when combined with CVE-2018-7171. This creates a risk of bypassing access controls via exposed session identi...

CVE-2014-5028

The CVE-2014-5028 issue affects Review Board: Original File and Patched File resources in 1.7.x (before 1.7.27) and 2.0.x (before 2.0.4) permit remote authenticated users to bypass access restrictions and access repository file content by guessing database IDs. This is the described vulnerability...

CVE-2018-8820

An issue was discovered in Square 9 GlobalForms 6.2.x. A Time Based SQL injection vulnerability in the "match" parameter allows remote authenticated attackers to execute arbitrary SQL commands. It is possible to upgrade access to full server compromise via xpcmdshell. In some cases, the...

CVE-2017-14008

CVE-2017-14008 affects GE Centricity PACS RA1000 workstation and related GE Healthcare imaging systems. Affected devices use default or hard-coded credentials, enabling remote authentication bypass and unauthorized access to the device. Public details in the connected documents confirm the root c...

CVE-2015-7463

IBM Business Process Manager 7.5.x, 8.0.x, 8.5.0, 8.5.5, and 8.5.6.0 through cumulative fix 2 allow remote authenticated users to delete process and task data by leveraging incorrect authorization checks. IBM X-Force ID: 108393...

Hikvision IP Camera Remote Authentication Bypass

The remote Hikvision IP camera is affected by an authentication bypass vulnerability. A remote, unauthenticated attacker can read configurations including account passwords, access the camera images, or modify the camera firmware. C Tenable Network Security, Inc. include'compat.inc'; if descripti...

Information disclosure

File and directory information exposure vulnerability in SYNO.SurveillanceStation.PersonalSettings.Photo in Synology Surveillance Station before 8.1.2-5469 allows remote authenticated users to obtain other user's sensitive files via the filename parameter...

DEBIAN-CVE-2018-7286

An issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. respjsip allows remote authenticated users to crash Asterisk segmentation fault by sending a number of SIP INVITE messages on a TCP or TLS connection and...

CVE-2016-0343

IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to obtain sensitive information by reading an error message. IBM X-Force ID: 111784...

Cross site scripting

Cross-site scripting XSS vulnerability in dbcentralcolumns.php in phpMyAdmin before 4.7.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

Sql injection

SQL injection vulnerability in the "Marketing Forms" screen in dotCMS before 3.7.2 and 4.x before 4.1.1 allows remote authenticated administrators to execute arbitrary SQL commands via the EXTFORMHANDLERorderBy parameter...

CVE-2017-8979

Security vulnerabilities in the HPE Integrated Lights-Out 2 iLO 2 firmware could be exploited remotely to allow authentication bypass, code execution, and denial of service...

CVE-2017-8982

A Remote Authentication Restriction Bypass vulnerability in HPE Intelligent Management Center iMC PLAT version 7.3 E0504P4 was found...

CVE-2017-8982

A Remote Authentication Restriction Bypass vulnerability in HPE Intelligent Management Center iMC PLAT version 7.3 E0504P4 was found...

Authentication flaw

A Remote Authentication Restriction Bypass vulnerability in HPE Intelligent Management Center iMC PLAT version 7.3 E0504P4 was found...

CVE-2017-8982

HPE iMC PLAT 7.3 (E0504P4) contains a Remote Authentication Restriction Bypass vulnerability (CVE-2017-8982). The issue is tied to UrlAccessController in the iMC PLAT, with unauthenticated access potentially enabling privilege escalation. Multiple public advisories document an unauthenticated EL ...

Code injection

Evergreen 2.5.9, 2.6.7, and 2.7.4 allows remote authenticated users with STAFFLOGIN permission to obtain sensitive settings history information by leveraging listing of open-ils.pcrud as a controller in the IDL...