CVE-2023-26913

EVOLUCARE ECSIMAGING aka ECS Imaging 6.21.5 is vulnerable to Cross Site Scripting XSS via newmovie. php...

CVE-2023-26913

EVOLUCARE ECSIMAGING aka ECS Imaging 6.21.5 is vulnerable to Cross Site Scripting XSS via newmovie. php...

Evolucare Ecsimaging 跨站脚本漏洞

Evolucare Ecsimaging is a mobile application for viewing medical radiology images from the French company Evolucare. A security vulnerability exists in Evolucare Ecsimaging versions prior to 6.21.5, which stems from the presence of cross-site scripting XSS via newmovie. php...

CVE-2023-26913

EVOLUCARE ECSIMAGING (aka ECS Imaging) before version 6.21.5 is vulnerable to Cross-Site Scripting (XSS) via the new_movie.php entry point. The available sources consistently identify the affected component as the new_movie.php file, with the root cause described as an XSS weakness in versions pr...

CVE-2023-26913

EVOLUCARE ECSIMAGING aka ECS Imaging 6.21.5 is vulnerable to Cross Site Scripting XSS via newmovie. php...

CVE-2021-3118

EVOLUCARE ECSIMAGING aka ECS Imaging through 6.21.5 has multiple SQL Injection issues in the login form and the password-forgotten form such as /reqpassworduser.php?email=. This allows an attacker to steal data in the database and obtain access to the application. The database component runs as...

Sql injection

UNSUPPORTED WHEN ASSIGNED EVOLUCARE ECSIMAGING aka ECS Imaging through 6.21.5 has multiple SQL Injection issues in the login form and the password-forgotten form such as /reqpassworduser.php?email=. This allows an attacker to steal data in the database and obtain access to the application. The...

CVE-2021-3118

EVOLUCARE ECSIMAGING aka ECS Imaging through 6.21.5 has multiple SQL Injection issues in the login form and the password-forgotten form such as /reqpassworduser.php?email=. This allows an attacker to steal data in the database and obtain access to the application. The database component runs as...

Evolucare Ecsimaging OS Command Injection Vulnerability

Evolucare Ecsimaging, a mobile application for viewing medical radiology images from the French company Evolucare, has a security vulnerability in Evolucare Ecsimaging version 6.21.5, which allows an attacker to exploit the parameter "file" in the web page showfile.php to gain root access. " in...

CVE-2021-3029

EVOLUCARE ECSIMAGING aka ECS Imaging through 6.21.5 has an OS Command Injection vulnerability via shell metacharacters and an IFS manipulation. The parameter "file" on the webpage /showfile.php can be exploited to gain root access. NOTE: This vulnerability only affects products that are no longer...

Command injection

UNSUPPORTED WHEN ASSIGNED EVOLUCARE ECSIMAGING aka ECS Imaging through 6.21.5 has an OS Command Injection vulnerability via shell metacharacters and an IFS manipulation. The parameter "file" on the webpage /showfile.php can be exploited to gain root access. NOTE: This vulnerability only affects...

CVE-2021-3029

EVOLUCARE ECSIMAGING aka ECS Imaging through 6.21.5 has an OS Command Injection vulnerability via shell metacharacters and an IFS manipulation. The parameter "file" on the webpage /showfile.php can be exploited to gain root access. NOTE: This vulnerability only affects products that are no longer...

Evolucare Ecsimaging 操作系统命令注入漏洞

Evolucare Ecsimaging, a mobile application for viewing medical radiology images from the French company Evolucare, has a security vulnerability in Evolucare Ecsimaging version 6.21.5, which allows an attacker to exploit the parameter "file" in the web page showfile.php to gain root access. " in...