8 matches found
EUVD-2019-20069
TaskInfo 8.2.0.280 contains a local buffer overflow vulnerability that allows attackers to crash the application by supplying oversized input to registration fields. Attackers can paste excessively long strings into the New User Name or New Serial Number textboxes in the Help menu's registration...
CVE-2019-25667
TaskInfo 8.2.0.280 contains a local buffer overflow vulnerability that allows attackers to crash the application by supplying oversized input to registration fields. Attackers can paste excessively long strings into the New User Name or New Serial Number textboxes in the Help menu's registration...
CVE-2019-25667 TaskInfo 8.2.0.280 Denial of Service Buffer Overflow
TaskInfo 8.2.0.280 contains a local buffer overflow vulnerability that allows attackers to crash the application by supplying oversized input to registration fields. Attackers can paste excessively long strings into the New User Name or New Serial Number textboxes in the Help menu's registration...
CVE-2019-25667 TaskInfo 8.2.0.280 Denial of Service Buffer Overflow
TaskInfo 8.2.0.280 contains a local buffer overflow vulnerability that allows attackers to crash the application by supplying oversized input to registration fields. Attackers can paste excessively long strings into the New User Name or New Serial Number textboxes in the Help menu's registration...
CVE-2019-25667
CVE-2019-25667 affects TaskInfo 8.2.0.280. The issue is a local buffer overflow in the registration dialog’s input fields, exploitable by pasting oversized strings into the New User Name or New Serial Number boxes. The consequence is a denial of service (application crash) with a high availabilit...
CVE-2020-9028
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow stored XSS via the newUserName parameter on the "User Creation, Deletion and Password Maintenance" screen when creating a new user...
CVE-2020-5305
Codoforum 4.8.3 allows XSS in the admin dashboard via a name field of a new user, i.e., on the Manage Users screen...
SQL injection vulnerability in the NewUserName parameter of the getquestion.jsp page of the government information system of Fujian Xingyu Information Technology Co.
The open government information platform is a WEB system that strengthens the construction and management of open government information through informatization means. There is a SQL injection vulnerability in the modified product, the vulnerability URL is:...