CVE-2020-29168

SQL Injection vulnerability in Projectworlds Online Doctor Appointment Booking System, allows attackers to gain sensitive information via the q parameter to the getuser.php endpoint...

PT-2023-11774 · Unknown · Projectworlds Online Doctor Appointment Booking System

Name of the Vulnerable Software and Affected Versions: Projectworlds Online Doctor Appointment Booking System affected versions not specified Description: The issue allows attackers to gain sensitive information via the "getuser.php" endpoint, specifically through the q parameter. This is a SQL...

CVE-2020-25078

An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. The unauthenticated /config/getuser endpoint allows for remote administrator password disclosure...

PT-2017-3367 · Zivif · Zivif Pr115-204-P-Rs

Name of the Vulnerable Software and Affected Versions: Zivif PR115-204-P-RS version V2.3.4.2103 Description: The issue is related to errors in handling registration data in the webcam's software. It allows a remote attacker to obtain user credentials using the HTTP request...