Lucene search
K

34 matches found

NVD
NVD
added 2023/10/26 11:15 p.m.28 views

CVE-2023-27170

Xpand IT Write-back manager v2.3.1 allows attackers to perform a directory traversal via modification of the siteName parameter...

7.5CVSS7.5AI score0.00787EPSS
Exploits1References1
Prion
Prion
added 2023/10/26 11:15 p.m.21 views

Directory traversal

Xpand IT Write-back manager v2.3.1 allows attackers to perform a directory traversal via modification of the siteName parameter...

4.6CVSS7.5AI score0.00787EPSS
Exploits1References1
CVE
CVE
added 2023/10/26 12:0 a.m.49 views

CVE-2023-27170

Xpand IT Write-back Manager, version 2.3.1, is affected by a directory traversal vulnerability triggered by modifying the siteName parameter. The issue enables attackers to access sensitive files/directories, constituting a high-severity impact per CVE-2023-27170. Documented attempts and descript...

7.5CVSS7.5AI score0.00787EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/10/26 12:0 a.m.34 views

CVE-2023-27170

Xpand IT Write-back manager v2.3.1 allows attackers to perform a directory traversal via modification of the siteName parameter...

7.7AI score0.00787EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/10/26 12:0 a.m.6 views

PT-2023-20987 · Xpand It · Xpand It Write-Back Manager

Name of the Vulnerable Software and Affected Versions: Xpand IT Write-back manager version 2.3.1 Description: The issue allows attackers to perform a directory traversal via modification of the siteName parameter. This enables unauthorized access to sensitive files and directories. Recommendation...

7.5CVSS7.3AI score0.00787EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/10/26 12:0 a.m.15 views

CVE-2023-27170

Xpand IT Write-back manager v2.3.1 allows attackers to perform a directory traversal via modification of the siteName parameter...

7.1AI score0.00787EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/09/12 12:15 p.m.3 views

CVE-2023-27169

Xpand IT Write-back manager v2.3.1 uses a hardcoded salt in license class configuration which leads to the generation of a hardcoded and predictable symmetric encryption keys for license generation and validation...

6.5CVSS6.6AI score0.00263EPSS
Exploits0References5
OSV
OSV
added 2023/09/12 12:15 p.m.3 views

CVE-2023-27169

Xpand IT Write-back manager v2.3.1 uses a hardcoded salt in license class configuration which leads to the generation of a hardcoded and predictable symmetric encryption keys for license generation and validation...

6.5CVSS5.8AI score0.00263EPSS
Exploits0References4
NVD
NVD
added 2023/09/12 12:15 p.m.28 views

CVE-2023-27169

Xpand IT Write-back manager v2.3.1 uses a hardcoded salt in license class configuration which leads to the generation of a hardcoded and predictable symmetric encryption keys for license generation and validation...

6.5CVSS6.5AI score0.00263EPSS
Exploits0References4
Prion
Prion
added 2023/09/12 12:15 p.m.25 views

Hardcoded credentials

Xpand IT Write-back manager v2.3.1 uses a hardcoded salt in license class configuration which leads to the generation of a hardcoded and predictable symmetric encryption keys for license generation and validation...

6.4CVSS6.5AI score0.00263EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/09/12 12:0 a.m.37 views

CVE-2023-27169

Xpand IT Write-back manager v2.3.1 uses a hardcoded salt in license class configuration which leads to the generation of a hardcoded and predictable symmetric encryption keys for license generation and validation...

6.7AI score0.00263EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/09/12 12:0 a.m.16 views

CVE-2023-27169

Xpand IT Write-back manager v2.3.1 uses a hardcoded salt in license class configuration which leads to the generation of a hardcoded and predictable symmetric encryption keys for license generation and validation...

6.9AI score0.00263EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/09/12 12:0 a.m.5 views

Xpand IT Write-back manager Trust Management Issue Vulnerability

Xpand IT Write-back manager is an extension for Xpand IT. that allows users to enter data directly from Tableau dashboards into a database. A security vulnerability exists in Xpand IT Write-back manager version v2.3.1, which stems from the use of a hard-coded salt in the configuration of the...

6.5CVSS6.7AI score0.00263EPSS
Exploits0References5
CVE
CVE
added 2023/09/12 12:0 a.m.43 views

CVE-2023-27169

CVE-2023-27169 affects Xpand IT Write-back manager version 2.3.1. A hardcoded salt in the license class configuration leads to generation of a hardcoded and predictable symmetric encryption key used for license generation and validation. Impact is described as creation/validation of licenses with...

6.5CVSS6.4AI score0.00263EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder