25 matches found
EUVD-2015-6476
Malware in sbrugna...
EUVD-2015-6477
Malware in sbrugna...
EUVD-2013-2747
Malware in sbrugna...
CVE-2013-2808
Heap-based buffer overflow in Xper in Philips Xper Information Management Physiomonitoring 5 components, Xper Information Management Vascular Monitoring 5 components, and Xper Information Management servers and workstations for Flex Cardio products before XperConnect 1.5.4.053 SP2 allows remote...
harlemcardio.com Cross Site Scripting vulnerability OBB-3603420
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2019-18248
BIOTRONIK CardioMessenger II, The affected products transmit credentials in clear-text prior to switching to an encrypted communication channel. An attacker can disclose the product’s client credentials for connecting to the BIOTRONIK Remote Communication infrastructure...
BIOTRONIK CardioMessenger II-S Authorization Issue Vulnerability (CNVD-2020-52056)
The Biotronik CardioMessenger II-S is a portable medical monitoring device from Biotronik Germany. An authorization issue vulnerability exists in Biotronik CardioMessenger II-S T-Line T4APP version 2.20 and II-S GSM T4APP version 2.20, which stems from the program using the same credentials for...
Cardio Journal blood pressure - Exported components, External URLs, SD-card access vulnerabilities
HackApp vulnerability scanner discovered that application Cardio Journal blood pressure published at the 'play' market has multiple vulnerabilities...
30 Day Cardio Challenge FREE - MIT license, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application 30 Day Cardio Challenge FREE published at the 'play' market has multiple vulnerabilities...
Daily Cardio Workout FREE - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Daily Cardio Workout FREE published at the 'play' market has multiple vulnerabilities...
Women Workout: Home Gym Cardio - Base64 encoded String, Dangerous filesystem permissions, Insecure KeyStore vulnerabilities
HackApp vulnerability scanner discovered that application Women Workout: Home Gym Cardio published at the 'play' market has multiple vulnerabilities...
CVE-2015-6538
The login page in Epiphany Cardio Server 3.3, 4.0, and 4.1 mishandles authentication requests, which allows remote attackers to conduct LDAP injection attacks, and consequently bypass intended access restrictions, via a crafted URL...
CVE-2015-6537
SQL injection vulnerability in the login page in Epiphany Cardio Server 3.3 allows remote attackers to execute arbitrary SQL commands via a crafted URL...
Design/Logic Flaw
The login page in Epiphany Cardio Server 3.3, 4.0, and 4.1 mishandles authentication requests, which allows remote attackers to conduct LDAP injection attacks, and consequently bypass intended access restrictions, via a crafted URL...
Sql injection
SQL injection vulnerability in the login page in Epiphany Cardio Server 3.3 allows remote attackers to execute arbitrary SQL commands via a crafted URL...
CVE-2015-6538
CVE-2015-6538 affects Epiphany Cardio Server login page: improper handling of authentication requests enables an LDAP injection via a crafted URL, bypassing access controls. Impacted versions are 3.3, 4.0, and 4.1, potentially allowing unauthenticated attackers to bypass authentication and access...
CVE-2015-6537
SQL injection vulnerability in the login page in Epiphany Cardio Server 3.3 allows remote attackers to execute arbitrary SQL commands via a crafted URL...
CVE-2015-6537
The CVE-2015-6537 issue affects Epiphany Cardio Server 3.3, where an SQL injection in the login page URL allows an unauthenticated attacker to execute SQL commands that can lead to administrator access. CERT/ENISA documentation indicates the vulnerability enables login as an administrator and aff...
CVE-2015-6538
The login page in Epiphany Cardio Server 3.3, 4.0, and 4.1 mishandles authentication requests, which allows remote attackers to conduct LDAP injection attacks, and consequently bypass intended access restrictions, via a crafted URL...
Epiphany Healthcare Cardio Server SQL和LDAP注入漏洞
No description provided by source...