2 matches found
CVE-2019-19015
An issue was discovered in TitanHQ WebTitan before 5.18. The proxy service which is typically exposed to all users allows connections to the internal PostgreSQL database of the appliance. By connecting to the database through the proxy without password authentication, an attacker is able to fully...
CVE-2019-19015
TitanHQ WebTitan (before version 5.18) contains an authentication-free proxy that exposes the appliance’s internal PostgreSQL database. The proxy allows connections to the database without password authentication, enabling an attacker to fully control the appliance database and, through it, pursu...