Lucene search
K

6 matches found

NVD
NVD
added 2012/02/21 1:31 p.m.14 views

CVE-2012-1235

Cross-site request forgery CSRF vulnerability in Advantech/BroadWin WebAccess 7.0 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0235...

6CVSS6.6AI score0.0051EPSS
Exploits1References1
NVD
NVD
added 2012/02/21 1:31 p.m.24 views

CVE-2012-1234

SQL injection vulnerability in Advantech/BroadWin WebAccess 7.0 allows remote authenticated users to execute arbitrary SQL commands via a malformed URL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0234...

6.5CVSS7.8AI score0.01156EPSS
Exploits1References1
NVD
NVD
added 2012/02/21 1:31 p.m.17 views

CVE-2012-0236

Advantech/BroadWin WebAccess 7.0 and earlier allows remote attackers to obtain sensitive information via a direct request to a URL. NOTE: the vendor reportedly "does not consider it to be a security risk."...

5CVSS6.1AI score0.01279EPSS
Exploits0References2
Prion
Prion
added 2012/02/21 1:31 p.m.31 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in Advantech/BroadWin WebAccess 7.0 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0235...

6CVSS6.9AI score0.0051EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2012/02/21 11:0 a.m.25 views

CVE-2012-1234

SQL injection vulnerability in Advantech/BroadWin WebAccess 7.0 allows remote authenticated users to execute arbitrary SQL commands via a malformed URL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0234...

7.8AI score0.01156EPSS
Exploits1References1
CVE
CVE
added 2012/02/21 11:0 a.m.85 views

CVE-2012-0236

CVE-2012-0236 affects Advantech/BroadWin WebAccess ≤7.0, where an unauthenticated user can access restricted information via a direct URL request (information exposure). The vendor reportedly does not consider it a security risk. Public advisories indicate multiple vulnerabilities were reported i...

5CVSS6.3AI score0.01279EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder