Lucene search
K

4 matches found

OSV
OSV
added 2022/02/14 8:15 p.m.4 views

CVE-2021-43106

A Header Injection vulnerability exists in Compass Plus TranzWare Online FIMI Web Interface Tranzware Online TWO 5.3.33.3 F38 and FIMI 4.2.19.4 25.The HTTP host header can be manipulated and cause the application to behave in unexpected ways. Any changes made to the header would just cause the...

6.1CVSS5.8AI score0.00683EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/02/14 8:15 p.m.2 views

CVE-2021-43106

A Header Injection vulnerability exists in Compass Plus TranzWare Online FIMI Web Interface Tranzware Online TWO 5.3.33.3 F38 and FIMI 4.2.19.4 25.The HTTP host header can be manipulated and cause the application to behave in unexpected ways. Any changes made to the header would just cause the...

6.1CVSS6.4AI score0.00683EPSS
Exploits1References2
CVE
CVE
added 2022/02/14 7:48 p.m.92 views

CVE-2021-43106

CVE-2021-43106 affects Compass Plus TranzWare Online FIMI Web Interface (TWO) version 5.3.33.3 F38 and FIMI 4.2.19.4. The root cause is improper validation/escaping of the HTTP Host header, leading the server to trust the Host header and redirect requests to a different Domain/IP. Documented impa...

6.1CVSS6.3AI score0.00683EPSS
Exploits1References1Affected Software2
CNNVD
CNNVD
added 2022/02/14 12:0 a.m.4 views

Compass Plus e-Commerce Payment Gateway 安全漏洞

Compass Plus e-Commerce Payment Gateway is an application interface of the Russian company Compass Plus. It provides an API interface for payment functions. A security vulnerability exists in Compass Plus TranzWare Online FIMI Web Interface Tranzware Online TWO 5.3.33.3 F38 and FIMI 4.2.19.4 25,...

6.1CVSS6.3AI score0.00683EPSS
Exploits1References2
Rows per page
Query Builder