68 matches found
CVE-2019-25287
Adaware Web Companion version 4.8.2078.3950 contains an unquoted service path vulnerability in the WCAssistantService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files x86\Lavasoft\Web Companion\Application\ t...
Adaware Web Companion 代码问题漏洞
Adaware Web Companion is a security tool developed by Adaware Corporation. Version 4.8.2078.3950 of Adaware Web Companion contains a code vulnerability. This vulnerability stems from the service path in WCAssistantService that is not enclosed in quotes, allowing local users to execute code and ga...
CVE-2019-25287 Adaware Web Companion version 4.8.2078.3950 - 'WCAssistantService' Unquoted Service Path
Adaware Web Companion version 4.8.2078.3950 contains an unquoted service path vulnerability in the WCAssistantService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files x86\Lavasoft\Web Companion\Application\ t...
CVE-2019-25287 Adaware Web Companion version 4.8.2078.3950 - 'WCAssistantService' Unquoted Service Path
Adaware Web Companion version 4.8.2078.3950 contains an unquoted service path vulnerability in the WCAssistantService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files x86\Lavasoft\Web Companion\Application\ t...
CVE-2019-25287
CVE-2019-25287 affects Adaware Web Companion (v4.8.2078.3950) via an unquoted path in the WCAssistantService located at C:\Program Files (x86)\Lavasoft\Web Companion\Application, enabling local users to potentially execute code with LocalSystem privileges during service startup. The CVSS v3.1 bas...
EUVD-2019-19386
Adaware Web Companion version 4.8.2078.3950 contains an unquoted service path vulnerability in the WCAssistantService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files x86\Lavasoft\Web Companion\Application\ t...
PT-2026-5814
Name of the Vulnerable Software and Affected Versions Adaware Web Companion version 4.8.2078.3950 Description Adaware Web Companion version 4.8.2078.3950 contains an unquoted service path vulnerability in the WCAssistantService. This allows local users to potentially execute code with elevated...
CVE-2020-37102
Adaware Web Companion 4.9.2159 contains an unquoted service path vulnerability in the WCAssistantService that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with LocalSystem privileges...
CVE-2020-37102 Adaware Web Companion 4.9.2159 - 'WCAssistantService' Unquoted Service Path
Adaware Web Companion 4.9.2159 contains an unquoted service path vulnerability in the WCAssistantService that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with LocalSystem privileges...
CVE-2020-37102
Adaware Web Companion 4.9.2159 contains an unquoted service path vulnerability in the WCAssistantService that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with LocalSystem privileges...
EUVD-2020-30974
Adaware Web Companion 4.9.2159 contains an unquoted service path vulnerability in the WCAssistantService that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with LocalSystem privileges...
CVE-2020-37102 Adaware Web Companion 4.9.2159 - 'WCAssistantService' Unquoted Service Path
Adaware Web Companion 4.9.2159 contains an unquoted service path vulnerability in the WCAssistantService that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with LocalSystem privileges...
Adaware Web Companion 代码问题漏洞
Adaware Web Companion is a security tool developed by Adaware Corporation. Version 4.9.2159 of Adaware Web Companion contains a code vulnerability. This vulnerability stems from the lack of quotation marks around the WCAssistantService service path, which may allow local attackers to execute...
CVE-2025-14318
Improper access checks in M-Files Server before 25.12.15491.7 allows users to download files through M-Files Web using Web Companion despite Print and Download Prevention module being enabled...
CVE-2025-14318
Improper access checks in M-Files Server before 25.12.15491.7 allows users to download files through M-Files Web using Web Companion despite Print and Download Prevention module being enabled...
CVE-2025-14318 Improper access validation in M-Files Server
Improper access checks in M-Files Server before 25.12.15491.7 allows users to download files through M-Files Web using Web Companion despite Print and Download Prevention module being enabled...
CVE-2025-14318 Improper access validation in M-Files Server
Improper access checks in M-Files Server before 25.12.15491.7 allows users to download files through M-Files Web using Web Companion despite Print and Download Prevention module being enabled...
EUVD-2025-204039
Improper access checks in M-Files Server before 25.12 allows users to download files through M-Files Web using Web Companion despite Print and Download Prevention module being enabled...
CVE-2025-14318
CVE-2025-14318 affects M-Files Server prior to 25.12.15491.7. The issue is improper access checks that allow users to download files via M‑Files Web using Web Companion, even when the Print and Download Prevention module is enabled. Remediation: update to version 25.12.15491.7 or later. Other sou...
PT-2025-52000
Name of the Vulnerable Software and Affected Versions M-Files Server versions prior to 25.12 Description A flaw exists in M-Files Server that allows users to download files through M-Files Web using Web Companion, even when the Print and Download Prevention module is enabled. This is due to...