CVE-2020-23283

Information disclosure in Logon Page in MV's mConnect application v02.001.00 allows an attacker to know valid users from the application's database via brute force...

EUVD-2020-16030

Malware in sbrugna...

CVE-2020-23282

SQL injection in Logon Page in MV's mConnect application, v02.001.00, allows an attacker to use a non existing user with a generic password to connect to the application and get access to unauthorized information...

CVE-2020-23283

Information disclosure in Logon Page in MV's mConnect application v02.001.00 allows an attacker to know valid users from the application's database via brute force...

CVE-2020-23282

SQL injection in Logon Page in MV's mConnect application, v02.001.00, allows an attacker to use a non existing user with a generic password to connect to the application and get access to unauthorized information...

CVE-2020-23283

Information disclosure in Logon Page in MV's mConnect application v02.001.00 allows an attacker to know valid users from the application's database via brute force...

Information disclosure

Information disclosure in Logon Page in MV's mConnect application v02.001.00 allows an attacker to know valid users from the application's database via brute force...

Sql injection

SQL injection in Logon Page in MV's mConnect application, v02.001.00, allows an attacker to use a non existing user with a generic password to connect to the application and get access to unauthorized information...

CVE-2020-23282

SQL injection in Logon Page in MV's mConnect application, v02.001.00, allows an attacker to use a non existing user with a generic password to connect to the application and get access to unauthorized information...

CVE-2020-23282

The CVE-2020-23282 issue is a SQL injection in the login page of MV’s mConnect application (v02.001.00). The root cause is improper input handling on the Logon Page, enabling an attacker to bypass authentication by using a non-existent user with a generic password to access unauthorized informati...

CVE-2020-23283

Information disclosure in Logon Page in MV's mConnect application v02.001.00 allows an attacker to know valid users from the application's database via brute force...

CVE-2020-23283

CVE-2020-23283 affects MV mConnect application v02.001.00 and enables information disclosure on the login page, allowing an attacker to determine valid users from the application’s database via brute force. Red Hat and other connected records corroborate the logon-page information disclosure; CNN...

MV mConnect application SQL注入漏洞

MV mConnect application is a software application. A SQL injection vulnerability exists in the MV mConnect application, which can be exploited to brute-force obtain user information due to a failure to restrict user actions on the product's login page. The following products and versions are...

MV mConnect application SQL注入漏洞

MV mConnect application is a software application. A SQL injection vulnerability exists in the MV mConnect application, which can be exploited to brute-force obtain user information due to a failure to restrict user actions on the product's login page. The following products and versions are...