COMMAX Biometric Access Control System 跨站脚本漏洞

COMMAX Biometric Access Control System is a biometric access control system from the Korean company COMMAX. A cross-site scripting vulnerability exists in the COMMAX Biometric Access Control System version 1.0.0, which stems from unauthenticated reflective cross-site scripting in the cookie...

PT-2025-54424

COMMAX Biometric Access Control System 1.0.0 contains an unauthenticated reflected cross-site scripting vulnerability in cookie parameters 'CMX ADMIN NM' and 'CMX COMPLEX NM'. Attackers can inject malicious HTML and JavaScript code into these cookie values to execute arbitrary scripts in a victim...

CVE-2021-47706

COMMAX Biometric Access Control System 1.0.0 contains an authentication bypass vulnerability that allows unauthenticated attackers to access sensitive information and circumvent physical controls in smart homes and buildings by exploiting cookie poisoning. Attackers can forge cookies to bypass...

CVE-2021-47706 COMMAX Biometric Access Control System Authentication Bypass

COMMAX Biometric Access Control System 1.0.0 contains an authentication bypass vulnerability that allows unauthenticated attackers to access sensitive information and circumvent physical controls in smart homes and buildings by exploiting cookie poisoning. Attackers can forge cookies to bypass...

PT-2025-50236

Name of the Vulnerable Software and Affected Versions COMMAX Biometric Access Control System version 1.0.0 Description The COMMAX Biometric Access Control System is affected by an authentication bypass. An unauthenticated attacker can exploit this to access sensitive information and bypass physic...

EUVD-2017-9135

Malware in sbrugna...

CVE-2023-7103

Authentication Bypass by Primary Weakness vulnerability in ZKSoftware Biometric Security Solutions UFace 5 allows Authentication Bypass.This issue affects UFace 5: through 12022024...

Amazon will pay you $10 for your palm prints. Should you be worried?

Retail giant Amazon recently offered to pay $10 USD for your palm prints. Would you offer them your hand? Many seem to home in and seethe over the price being too little for something as priceless and unique as their palm print, not realizing that when it does come to registering biometric data i...

CVE-2017-17991

Biometric Shift Employee Management System has XSS via the expensename parameter in an index.php?user=expenses request...

Design/Logic Flaw

Biometric Shift Employee Management System has CSRF via index.php in an editholiday action...

CVE-2017-17989

Biometric Shift Employee Management System has XSS via the index.php holidayname parameter in an editholiday action...

CVE-2017-17876

Biometric Shift Employee Management System 3.0 allows remote attackers to bypass intended file-read restrictions via a user=download request with a pathname in the path parameter...

Google Aims to Kill Passwords with Project Abacus

Google wants to kill passwords. And the weapon it wants to use is called Project Abacus, which Google said will become available on Android devices by the end of 2016. The way Project Abacus works is that instead of relying on passwords or two-factor authentication to open your Android phone, you...

ZKSoftware Biometric Attendence Managnmnet Hardware[MIPS] 2 - Improper Authentication

No description provided by source. Exploit Title: ZKSoftware Biometric Attendence managnmnet HardwareMIPS Improper Authentication. Date: 20-3-2010 Author: FB1H2S Software Link: http://www.esslindia.com/install/eTimeTrack.zip Version: V2 Tested on: category: Remote Code : Advisory ZKSoftware...

ZKSoftware Biometric Attendence Managnmnet Hardware[MIPS] 2 - Improper Authentication

Exploit Title: ZKSoftware Biometric Attendence managnmnet HardwareMIPS Improper Authentication. Date: 20-3-2010 Author: FB1H2S Software Link: http://www.esslindia.com/install/eTimeTrack.zip Version: V2 Tested on: category: Remote Code : Advisory ZKSoftware Biometric Attendence management...