13 matches found
EUVD-2023-44017
Malicious code in bioql PyPI...
EUVD-2023-44016
Malicious code in bioql PyPI...
CVE-2023-3349
Information exposure vulnerability in IBERMATICA RPS 2019, which exploitation could allow an unauthenticated user to retrieve sensitive information, such as usernames, IP addresses or SQL queries sent to the application. By accessing the URL /RPS2019Service/status.html, the application enables th...
CVE-2023-3350
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By firstly downloading the log file, an attacker could retrieve the SQL query sent to the application in plaint text. This log file contains the password hashes coded with AES-CBC-128 bits algorithm, whi...
CVE-2023-3350
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By firstly downloading the log file, an attacker could retrieve the SQL query sent to the application in plaint text. This log file contains the password hashes coded with AES-CBC-128 bits algorithm, whi...
Design/Logic Flaw
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By firstly downloading the log file, an attacker could retrieve the SQL query sent to the application in plaint text. This log file contains the password hashes coded with AES-CBC-128 bits algorithm, whi...
Information disclosure
Information exposure vulnerability in IBERMATICA RPS 2019, which exploitation could allow an unauthenticated user to retrieve sensitive information, such as usernames, IP addresses or SQL queries sent to the application. By accessing the URL /RPS2019Service/status.html, the application enables th...
CVE-2023-3350 Cryptographic Issues on IBERMATICA RPS
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By firstly downloading the log file, an attacker could retrieve the SQL query sent to the application in plaint text. This log file contains the password hashes coded with AES-CBC-128 bits algorithm, whi...
CVE-2023-3350 Cryptographic Issues on IBERMATICA RPS
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By firstly downloading the log file, an attacker could retrieve the SQL query sent to the application in plaint text. This log file contains the password hashes coded with AES-CBC-128 bits algorithm, whi...
CVE-2023-3350
CVE-2023-3350 affects IBERMATICA RPS 2019. A cryptographic issue lets an attacker, by downloading a log file, access SQL queries in plaintext and the log contains password hashes encrypted with AES-CBC-128; these hashes can be decrypted via a .NET function to obtain plaintext passwords. The CVSS-...
CVE-2023-3349 Information exposure on IBERMATICA RPS
Information exposure vulnerability in IBERMATICA RPS 2019, which exploitation could allow an unauthenticated user to retrieve sensitive information, such as usernames, IP addresses or SQL queries sent to the application. By accessing the URL /RPS2019Service/status.html, the application enables th...
CVE-2023-3349
CVE-2023-3349 affects Ibermatica RPS 2019. The vuln is an information-disclosure flaw where an unauthenticated user can retrieve sensitive data (usernames, IPs, SQL queries) by triggering the logging mechanism via the URL /RPS2019Service/status.html, which generates a downloadable log file. The c...
CVE-2023-3349 Information exposure on IBERMATICA RPS
Information exposure vulnerability in IBERMATICA RPS 2019, which exploitation could allow an unauthenticated user to retrieve sensitive information, such as usernames, IP addresses or SQL queries sent to the application. By accessing the URL /RPS2019Service/status.html, the application enables th...