70 matches found
CVE-2019-15930
Intesync Solismed 3.3sp allows Clickjacking...
CVE-2019-15931
Intesync Solismed 3.3sp allows Directory Traversal, a different vulnerability than CVE-2019-16246...
Sql injection
Intesync Solismed 3.3sp has SQL Injection...
Directory traversal
Intesync Solismed 3.3sp allows Directory Traversal, a different vulnerability than CVE-2019-16246...
Code injection
An issue was discovered in Intesync Solismed 3.3sp1. An flaw in the encryption implementation exists, allowing for all encrypted data stored within the database to be decrypted...
Improper access control
Intesync Solismed 3.3sp has Incorrect Access Control...
Cross site scripting
Intesync Solismed 3.3sp has XSS...
Unrestricted file upload
Intesync Solismed 3.3sp allows Insecure File Upload...
Cross site request forgery (csrf)
Intesync Solismed 3.3sp has CSRF...
Security feature bypass
Intesync Solismed 3.3sp allows Clickjacking...
Design/Logic Flaw
Intesync Solismed 3.3sp1 allows Local File Inclusion LFI, a different vulnerability than CVE-2019-15931. This leads to unauthenticated code execution...
CVE-2019-17428
CVE-2019-17428 affects Intesync Solismed 3.3sp1. The issue is a flaw in the encryption implementation that allows all encrypted data in the database to be decrypted. The connected documents corroborate an encryption weakness; no exploit details or specific remediation are provided in the supplied...
CVE-2019-17428
An issue was discovered in Intesync Solismed 3.3sp1. An flaw in the encryption implementation exists, allowing for all encrypted data stored within the database to be decrypted...
CVE-2019-16246
CVE-2019-16246 affects Intesync Solismed 3.3sp1 and is described in Red Hat as a Local File Inclusion (LFI) that leads to unauthenticated code execution. CNVD entries also document a Solismed file inclusion vulnerability. The connected sources confirm LFI as the vulnerability class and unauthenti...
CVE-2019-16246
Intesync Solismed 3.3sp1 allows Local File Inclusion LFI, a different vulnerability than CVE-2019-15931. This leads to unauthenticated code execution...
CVE-2019-15936
The CVE-2019-15936 entry concerns Intesync Solismed 3.3sp, where an insecure file upload vulnerability is reported. Multiple connected sources (CNVD, RH Red Hat, PRION, NVD, CVE List) identify this issue and, in some entries, indicate potential for remote code execution due to arbitrary file uplo...
CVE-2019-15936
Intesync Solismed 3.3sp allows Insecure File Upload...
CVE-2019-15935
Intesync Solismed 3.3sp has XSS...
CVE-2019-15935
Intesync Solismed 3.3sp is affected by a cross-site scripting (XSS) vulnerability (CVE-2019-15935). The issue is documented across multiple sources as an XSS in Solismed, with no explicit exploitation details provided in the connected documents. Public material notes the vulnerability but does no...
CVE-2019-15934
Intesync Solismed 3.3sp has CSRF...