4 matches found
Smart Office Web 20.28 Information Disclosure / Insecure Direct Object Reference
Exploit Title: Smart Office Web 20.28 - Remote Information Disclosure Unauthenticated Shodan Dork:: inurl:"https://www.shodan.io/search?query=smart+office" Date: 09/Dec/2022 Exploit Author: Tejas Nitin Pingulkar https://cvewalkthrough.com/ Vendor Homepage: https://smartofficepayroll.com/ Software...
Smart Office Web 20.28 - Remote Information Disclosure (Unauthenticated)
Exploit Title: Smart Office Web 20.28 - Remote Information Disclosure Unauthenticated Shodan Dork:: inurl:"https://www.shodan.io/search?query=smart+office" Date: 09/Dec/2022 Exploit Author: Tejas Nitin Pingulkar https://cvewalkthrough.com/ Vendor Homepage: https://smartofficepayroll.com/ Software...
CVE-2022-47076
CVE-2022-47076 affects Smart Office Web 20.28 and earlier. The issue allows attackers to view sensitive information via the DisplayParallelLogData.aspx page, constituting an information disclosure that impacts confidentiality. The CVSS v3.1 base score is 7.5 (HIGH) with NETWORK attack vector, LOW...
CVE-2022-47076
An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to view sensitive information via DisplayParallelLogData.aspx...