3 matches found
CVE-2020-9323
Aquaforest TIFF Server 4.0 allows Unauthenticated File and Directory Enumeration via tiffserver/tssp.aspx...
CVE-2023-6343
Tyler Technologies Court Case Management Plus allows a remote, unauthenticated attacker to enumerate and access sensitive files using the tiffserver/tssp.aspx 'FN' and 'PN' parameters. This behavior is related to the use of a deprecated version of Aquaforest TIFF Server, possibly 2.x. The...
CVE-2020-9323
CVE-2020-9323 affects Aquaforest TIFF Server 4.0 and allows unauthenticated enumeration of files and directories via the tiffserver/tssp.aspx endpoint. The root cause is an information-disclosure vulnerability in a networked TIFF server, enabling an attacker with network access to enumerate poten...