3 matches found
Touchpad Trivum WebTouch Setup 2.53 build 13163 - Authentication Bypass
Touchpad Trivum WebTouch Setup 2.53 build 13163 - Authentication Bypass Exploit Title: Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 - Unauthorized Authentication Reset Date: 2018-07-20 Software Link: https://world.trivum-shop.de Version: 2.56 build 13381 - 12-07-2018 Category: webapps...
CVE-2018-13862
The CVE-2018-13862 entry concerns Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 (FW 303). The vulnerability allows unauthorized remote attackers to reset authentication via the URL /xml/system/setAttribute.xml using a GET request with id=0&attr=protectAccess&newValue=0, which can let an a...
CVE-2018-13862
Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 of Apr 6 2018 09:10:14 FW 303 allow unauthorized remote attackers to reset the authentication via the "/xml/system/setAttribute.xml" URL, using the GET request "?id=0&attr=protectAccess&newValue=0" a successful attack will allow attackers to...