4 matches found
PT-2025-26727
Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 140 Firefox ESR versions prior to 128.12 Description: The issue arises when a file download is specified via the Content-Disposition header, but this directive is ignored if the file is included via an or tag. This...
PT-2022-5991 · Adobe · Experience Manager
Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.14 and earlier Description: The issue is related to a reflected Cross-Site Scripting XSS vulnerability. It can be exploited if an attacker convinces a victim to visit a URL referencing a vulnerable page,...
Design/Logic Flaw
The /setup URI on AVer Information EH6108H+ devices with firmware X9.03.24.00.07l allows remote attackers to bypass intended page-access restrictions or modify passwords by leveraging knowledge of a handle parameter value...
CVE-2016-6536
The CVE-2016-6536 issue affects AVer Information EH6108H+ hybrid DVRs (firmware X9.03.24.00.07l and possibly earlier). The vulnerability enables remote attackers to bypass page-access restrictions or modify passwords by guessing the handle parameter value on the web interface /setup page, potenti...