3 matches found
CVE-2018-14916
LOYTEC LGATE-902 6.3.2 devices allow Arbitrary file deletion...
CVE-2018-14916
Loytec LGATE-902 (pre-6.4.2) is affected by a local file inclusion vulnerability (CVE-2018-14916). The Nuclei template specifies versions prior to 6.4.2 as vulnerable, enabling an attacker to read sensitive files on the device. The CVE description notes arbitrary file deletion as associated risk....
Loytec LGATE-902 XSS / Traversal / File Deletion
INFORMATION Product: Loytec LGATE-902 https://www.loytec.com/ Affected versions: 6.4.2 tested on version 6.3.2 CVE IDs: CVE-2018-14919 Stored and reflected XSS, CVE-2018-14918 Path traversal, and CVE-2018-14916 Arbitrary file deletion. Remote-exploit: yes TIMELINE Vendor notification: 26th July,...