12 matches found
EUVD-2020-28763
Malware in sbrugna...
EUVD-2019-8797
Malware in sbrugna...
CVE-2020-7831
A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via directory traversal for automatic execution. The victim user need to reboot, however...
Directory traversal
A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via directory traversal for automatic execution. The victim user need to reboot, however...
CVE-2020-7831
The CVE-2020-7831 entry concerns the web-based Ebiz4u contract management interface from INOGARD. A vulnerability exists that could let a victim user download arbitrary files by abusing a directory traversal via the startup menu directory to trigger automatic execution; the impact per the descrip...
CVE-2020-7831
A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via directory traversal for automatic execution. The victim user need to reboot, however...
Inogard Ebiz4u Code Execution Vulnerability
Inogard Ebiz4u is an e-procurement system from Inogard Korea. A security vulnerability exists in AxECM.cab ActiveX Control in Inogard Ebiz4u, which stems from a lack of integrity checking in the program. The vulnerability can be exploited to download files and execute code by setting the paramete...
CVE-2019-19165
AxECM.cabActiveX Control in Inogard Ebiz4u contains a vulnerability that could allow remote files to be downloaded and executed by setting arguments to the activeX method. Download of Code Without Integrity Check vulnerability in ActiveX control of Inogard Co,,LTD Ebiz4u ActiveX of Inogard...
CVE-2019-19165
AxECM.cabActiveX Control in Inogard Ebiz4u contains a vulnerability that could allow remote files to be downloaded and executed by setting arguments to the activeX method. Download of Code Without Integrity Check vulnerability in ActiveX control of Inogard Co,,LTD Ebiz4u ActiveX of Inogard...
Design/Logic Flaw
AxECM.cabActiveX Control in Inogard Ebiz4u contains a vulnerability that could allow remote files to be downloaded and executed by setting arguments to the activeX method. Download of Code Without Integrity Check vulnerability in ActiveX control of Inogard Co,,LTD Ebiz4u ActiveX of Inogard...
CVE-2019-19165
AxECM.cabActiveX Control in Inogard Ebiz4u contains a vulnerability that could allow remote files to be downloaded and executed by setting arguments to the activeX method. Download of Code Without Integrity Check vulnerability in ActiveX control of Inogard Co,,LTD Ebiz4u ActiveX of Inogard...
CVE-2019-19165
CVE-2019-19165 affects Inogard Ebiz4u AxECM.cab ActiveX control. Connected sources describe a remote code execution risk: by passing arguments to the ActiveX method, an attacker can cause a file to be downloaded to a Windows user’s folder and executed. Affected product: Inogard Ebiz4u ActiveX (Ax...