11 matches found
EUVD-2018-6812
Malware in sbrugna...
EUVD-2018-6756
Malware in sbrugna...
CVE-2018-14930
An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. CSRF can occur via a /CollatWebApp/gcmsRefInsert?name=SUPP URI...
CVE-2018-14874
An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. Input passed through the code parameter in three pages as collaterals/colexe3t.jsp and /references/refsuppu.jsp and /references/refbranu.jsp is mishandled before being used in SQL queries, allowing SQL injecti...
CVE-2018-14930
An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. CSRF can occur via a /CollatWebApp/gcmsRefInsert?name=SUPP URI...
Cross site request forgery (csrf)
An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. CSRF can occur via a /CollatWebApp/gcmsRefInsert?name=SUPP URI...
Sql injection
An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. Input passed through the code parameter in three pages as collaterals/colexe3t.jsp and /references/refsuppu.jsp and /references/refbranu.jsp is mishandled before being used in SQL queries, allowing SQL injecti...
CVE-2018-14930
An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. CSRF can occur via a /CollatWebApp/gcmsRefInsert?name=SUPP URI...
CVE-2018-14930
The CVE-2018-14930 entry concerns the Polaris FT Intellect Core Banking 9.7.1 Armor module where a CSRF vulnerability can be triggered via the URI /CollatWebApp/gcmsRefInsert?name=SUPP. The incident is documented in multiple sources (NVD, CVE pages, and Prion/CVELIST records) with consistent desc...
CVE-2018-14874
The CVE-2018-14874 entry concerns Polaris FT Intellect Core Banking 9.7.1 (Armor module). The vulnerability arises when user input passed through the code parameter on three JSP pages (collaterals/colexe3t.jsp, /references/refsuppu.jsp, /references/refbranu.jsp) is mishandled before being embedde...
Intellect Core Cross Site Scripting Vulnerability
Intellect Core banking software suffers from a cross site scripting vulnerability. Vendor: ==================== Intellect Design Arena Polaris Product: =================== Intellect Core banking software Armar module Vulnerability Type: ========================== Cross site scripting - XSS CVE...