186 matches found
CVE-2020-29659
A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings&sid= attack...
CVE-2020-29659
CVE-2020-29659 affects Flexense DupScout Enterprise 10.0.18, where a buffer overflow in the web server allows remote, unauthenticated code execution as SYSTEM by overflowing the sid parameter through GET /settings&sid=. The issue stems from improper handling of the sid parameter in the web server...
PT-2020-17238 · Flexense · Dupscout Enterprise
Name of the Vulnerable Software and Affected Versions: Flexense DupScout Enterprise version 10.0.18 Description: A buffer overflow in the web server of Flexense DupScout Enterprise allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET...
Flexense DiskBoss Enterprise Buffer Overflow (CVE-2018-5262)
A stack buffer overflow vulnerability exists in the web server of DiskBoss Enterprise. The vulnerability is due to the way DiskBoss Enterprise handles bounds checking. A remote, authenticated attack can lead to a stack buffer overflow...
Flexense Enterprise Products Detection
Binary data flexensedetect.nbin...
Exploit for Improper Input Validation in Flexense Syncbreeze
Flexense HTTP Server Server-Enable web server on port. Module...
Flexense HTTP Server Denial Of Service
This module triggers a Denial of Service vulnerability in the Flexense HTTP server. Vulnerability caused by a user mode write access memory violation and can be triggered with rapidly sending variety of HTTP requests with long HTTP header values. Multiple Flexense applications that are using...
Flexense VX Search Enterprise Cross-Site Scripting Vulnerability
Flexense VX Search Enterprise is an automated rules-based document search solution from Flexense Canada. A cross-site scripting vulnerability exists in Flexense VX Search Enterprise versions 10.1.12 through 10.7. A remote attacker could exploit the vulnerability to execute code that could obtain...
Flexense DiskSavvy Enterprise Cross-Site Scripting Vulnerability
Flexense DiskSavvy Enterprise is a disk space usage analyzer from Flexense Canada. The product is capable of analyzing disks, network shares, NAS devices and enterprise storage systems. A cross-site scripting vulnerability exists in Flexense DiskSavvy Enterprise versions 10.4 through 10.7. A remo...
Flexense VX Search 10.7 Cross Site Scripting
Description: URL: localhost/ Affected Component: /?n0ipr0csalert'XSS'n0ipr0cs=1 Vulnerability Type: Cross Site Scripting https://cwe.mitre.org/data/definitions/79.html Vendor of Product: Flexense VX Search Version: from v10.1.12 to v10.7. Attack Type: Remote Impact: This attack allows an attacker...
Flexense DiskBoss 9.1.16 Cross Site Scripting
Description: URL: l ocalhost/ Affected Component: /?n0ipr0csalert'XSS'n0ipr0cs=1 Vulnerability Type: Cross Site Scripting https://cwe.mitre.org/data/definitions/79.html Vendor of Product: Flexense-DiskBoss Version: v7.4.28 to v9.1.16 Attack Type: Remote Impact: This attack allows an attacker code...
Flexense Disksavvy 10.7 Cross Site Scripting
Description: URL: localhost/ Affected Component: /?n0ipr0csalert'XSS'n0ipr0cs=1 Vulnerability Type: Cross Site Scripting https://cwe.mitre.org/data/definitions/79.html Vendor of Product: Flexense Disksavvy Version: from v10.4 to v10.7. Attack Type: Remote Impact: This attack allows an attacker co...
Flexense DiskBoss Enterprise Cross-Site Scripting Vulnerability
Flexense DiskBoss Enterprise is a rules-based automated data analysis and file management solution from Flexense Canada. The solution supports performing disk space analysis, file classification, file search, file synchronization and data migration. A cross-site scripting vulnerability exists in...
Flexense DupScout 10.7 Cross Site Scripting
Description: URL: localhost/ Affected Component: /?n0ipr0csalert'XSS'n0ipr0cs=1 Vulnerability Type: Cross Site Scripting https://cwe.mitre.org/data/definitions/79.html Vendor of Product: Flexense DupScout Version: from v10.0.18 to v10.7. Attack Type: Remote Impact: This attack allows an attacker...
Flexense DiskSorter 10.7 Cross Site Scripting
Description: URL: localhost/ Affected Component: /?n0ipr0csalert'XSS'n0ipr0cs=1 Vulnerability Type: Cross Site Scripting https://cwe.mitre.org/data/definitions/79.html Vendor of Product: Flexense DiskSorter Version: from v9.5.12 to v10.7. Attack Type: Remote Impact: This attack allows an attacker...
Cross site scripting
XSS exists in Flexense DiskSorter Enterprise from v9.5.12 to v10.7...
CVE-2018-10565
XSS exists in Flexense DiskSavvy Enterprise from v10.4 to v10.7...
CVE-2018-10564
XSS exists in Flexense DiskPulse Enterprise from v10.4 to v10.7...
CVE-2018-10563
An XSS in Flexense SyncBreeze affects all versions tested from SyncBreeze Enterprise from v10.1 to v10.7...
Cross site scripting
XSS exists in Flexense DupScout Enterprise from v10.0.18 to v10.7...