Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-6476

Malware in sbrugna...

9.8CVSS9.5AI score0.01516EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-6477

Malware in sbrugna...

9.8CVSS9.5AI score0.01875EPSS
Exploits0References3
NVD
NVD
added 2015/12/27 7:59 p.m.16 views

CVE-2015-6538

The login page in Epiphany Cardio Server 3.3, 4.0, and 4.1 mishandles authentication requests, which allows remote attackers to conduct LDAP injection attacks, and consequently bypass intended access restrictions, via a crafted URL...

9.8CVSS9.6AI score0.01875EPSS
Exploits0References2
Prion
Prion
added 2015/12/27 7:59 p.m.10 views

Design/Logic Flaw

The login page in Epiphany Cardio Server 3.3, 4.0, and 4.1 mishandles authentication requests, which allows remote attackers to conduct LDAP injection attacks, and consequently bypass intended access restrictions, via a crafted URL...

7.5CVSS7.6AI score0.01875EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2015/12/27 7:59 p.m.19 views

CVE-2015-6537

SQL injection vulnerability in the login page in Epiphany Cardio Server 3.3 allows remote attackers to execute arbitrary SQL commands via a crafted URL...

9.8CVSS9.8AI score0.01516EPSS
Exploits0References2
Prion
Prion
added 2015/12/27 7:59 p.m.12 views

Sql injection

SQL injection vulnerability in the login page in Epiphany Cardio Server 3.3 allows remote attackers to execute arbitrary SQL commands via a crafted URL...

7.5CVSS8.9AI score0.01516EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2015/12/27 7:0 p.m.39 views

CVE-2015-6538

CVE-2015-6538 affects Epiphany Cardio Server login page: improper handling of authentication requests enables an LDAP injection via a crafted URL, bypassing access controls. Impacted versions are 3.3, 4.0, and 4.1, potentially allowing unauthenticated attackers to bypass authentication and access...

9.8CVSS9.5AI score0.01875EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2015/12/27 7:0 p.m.42 views

CVE-2015-6537

The CVE-2015-6537 issue affects Epiphany Cardio Server 3.3, where an SQL injection in the login page URL allows an unauthenticated attacker to execute SQL commands that can lead to administrator access. CERT/ENISA documentation indicates the vulnerability enables login as an administrator and aff...

9.8CVSS9.8AI score0.01516EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/12/27 7:0 p.m.26 views

CVE-2015-6537

SQL injection vulnerability in the login page in Epiphany Cardio Server 3.3 allows remote attackers to execute arbitrary SQL commands via a crafted URL...

9.9AI score0.01516EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/12/27 7:0 p.m.18 views

CVE-2015-6538

The login page in Epiphany Cardio Server 3.3, 4.0, and 4.1 mishandles authentication requests, which allows remote attackers to conduct LDAP injection attacks, and consequently bypass intended access restrictions, via a crafted URL...

9.7AI score0.01875EPSS
Exploits0References2
CERT
CERT
added 2015/12/01 12:0 a.m.35 views

Epiphany Cardio Server is vulnerable to SQL and LDAP injection

Overview The Epiphany Cardio Server is vulnerable to SQL injection and LDAP injection, allowing an unauthenticated attacker to gain administrator rights. Description Epiphany Cardio Server was reported as being vulnerable to the following issues:CWE-89: Improper Neutralization of Special Elements...

9.8CVSS10AI score0.01875EPSS
Exploits0References3
Rows per page
Query Builder