66 matches found
EUVD-2016-9208
Malware in sbrugna...
EUVD-2015-6399
Malware in sbrugna...
EUVD-2015-6398
Malware in sbrugna...
EUVD-2016-10143
Malware in sbrugna...
EUVD-2015-1144
Malware in sbrugna...
EUVD-2016-6727
Malware in sbrugna...
EUVD-2017-4268
Malware in sbrugna...
Buffer overflow
Moxa SoftCMS 1.3 and prior is susceptible to a buffer overflow condition that may crash or allow remote code execution. Moxa released SoftCMS version 1.4 on June 1, 2015, to address the vulnerability...
CVE-2015-6458
CVE-2015-6458 describes a heap/classic buffer overflow in Moxa SoftCMS 1.3 and earlier that may crash or allow remote code execution. Public documentation ties the issue to buffer overflow weaknesses in SoftCMS prior to version 1.4, which Moxa released on 2015-06-01 to address the vulnerability b...
CVE-2017-12729
A SQL Injection issue was discovered in Moxa SoftCMS Live Viewer through 1.6. An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability has been identified. Attackers can exploit this vulnerability to access SoftCMS without knowing the user's password...
CVE-2017-12729
A SQL Injection issue was discovered in Moxa SoftCMS Live Viewer through 1.6. An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability has been identified. Attackers can exploit this vulnerability to access SoftCMS without knowing the user's password...
Sql injection
A SQL Injection issue was discovered in Moxa SoftCMS Live Viewer through 1.6. An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability has been identified. Attackers can exploit this vulnerability to access SoftCMS without knowing the user's password...
CVE-2017-12729
CVE-2017-12729 is a SQL Injection vulnerability in Moxa SoftCMS Live Viewer (versions up to 1.6). The root cause is improper neutralization of special elements in SQL commands, allowing an unauthenticated attacker to access SoftCMS without a password. The ICS-CERT advisory confirms affected versi...
CVE-2017-12729
A SQL Injection issue was discovered in Moxa SoftCMS Live Viewer through 1.6. An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability has been identified. Attackers can exploit this vulnerability to access SoftCMS without knowing the user's password...
Moxa SoftCMS Live Viewer SQL Injection Vulnerability
Moxa SoftCMS Live Viewer is a software package developed by Moxa for remote monitoring and debugging of industrial automation systems. A SQL injection vulnerability exists in Moxa SoftCMS Live Viewer 1.6 and earlier versions. A remote attacker can exploit this vulnerability to access SoftCMS Live...
Moxa SoftCMS Live Viewer SQL Injection Vulnerability
Moxa SoftCMS Live Viewer is a video surveillance software designed for industrial automation systems. A SQL injection vulnerability exists in Moxa SoftCMS Live Viewer 1.6 and earlier versions, which can be exploited by an attacker to access SoftCMS without knowing the user's password...
Moxa SoftCMS Live Viewer
CVSS v3 9.8 AFFECTED PRODUCTS The following versions of SoftCMS Live Viewer, a video surveillance software designed for industrial automation systems, are affected: SoftCMS Live Viewer, Version 1.6 and prior versions. IMPACT Successful exploitation of this vulnerability could allow an...
CVE-2016-9333
An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. The SoftCMS Application does not properly sanitize input that may allow a remote attacker access to SoftCMS with administrator's privilege through specially crafted input SQL INJECTION...
CVE-2016-9332
An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. Moxa SoftCMS Webserver does not properly validate input. An attacker could provide unexpected values and cause the program to crash or excessive consumption of resources could result in a denial-of-service condition...
CVE-2016-9333
An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. The SoftCMS Application does not properly sanitize input that may allow a remote attacker access to SoftCMS with administrator's privilege through specially crafted input SQL INJECTION...