6 matches found
EUVD-2022-32596
Malicious code in bioql PyPI...
CVE-2022-28113
An issue in upload.csp of FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows attackers to write files and reset the user passwords without having a valid session cookie...
Code injection
An issue in upload.csp of FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows attackers to write files and reset the user passwords without having a valid session cookie...
CVE-2022-28113
Vulnerability summary: CVE-2022-28113 affects FANTEC GmbH MWiD25-DS Firmware v2.000.030. The issue is in the upload.csp component and allows attackers to write files and reset user passwords without a valid session cookie. Impact: potential unauthorized file writes and password resets; exploitati...
CVE-2022-26591
FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows unauthenticated attackers to access and download arbitrary files via a crafted GET request...
CVE-2022-26591
Affected product: FANTEC GmbH MWiD25-DS firmware 2.000.030. Vulnerability: unauthenticated attackers can access and download arbitrary files via a crafted GET request. This is supported by multiple sources (Red Hat, NVD entries, CNNVD) describing the same issue. Impact (as stated): potential expo...