6 matches found
CVE-2026-42513
This vulnerability exists in e-Sushrut due to improper authentication logic that relies on client-side response parameters to determine authentication status. A remote attacker could exploit this vulnerability by intercepting and modifying the server response. Successful exploitation of this...
EUVD-2026-26196
This vulnerability exists in e-Sushrut due to improper authentication logic that relies on client-side response parameters to determine authentication status. A remote attacker could exploit this vulnerability by intercepting and modifying the server response. Successful exploitation of this...
EUVD-2021-2888
Malicious code in bioql PyPI...
CVE-2021-0269
The improper handling of client-side parameters in J-Web of Juniper Networks Junos OS allows an attacker to perform a number of different malicious actions against a target device when a user is authenticated to J-Web. An attacker may be able to supersede existing parameters, including hardcoded...
Hardcoded credentials
The improper handling of client-side parameters in J-Web of Juniper Networks Junos OS allows an attacker to perform a number of different malicious actions against a target device when a user is authenticated to J-Web. An attacker may be able to supersede existing parameters, including hardcoded...
CVE-2021-0269
The CVE-2021-0269 entry concerns Juniper Networks Junos OS J-Web. The root cause is improper handling of client-side parameters, allowing an authenticated attacker to supersede or modify HTTP/S session parameters, bypass input validation rules, and alter J-Web behavior. Potential consequences inc...