5 matches found
CVE-2022-25781
Cross-site Scripting XSS vulnerability in Web UI of Secomea GateManager allows phishing attacker to inject javascript or html into logged in user session...
Cross site scripting
Cross-site Scripting XSS vulnerability in Web UI of Secomea GateManager allows phishing attacker to inject javascript or html into logged in user session...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Web UI of Secomea GateManager allows phishing attacker to issue get request in logged in user session...
CVE-2022-25778 Unload handlers may unintentionally defeat CSRF guards
Cross-Site Request Forgery CSRF vulnerability in Web UI of Secomea GateManager allows phishing attacker to issue get request in logged in user session...
CVE-2022-25778
The CVE-2022-25778 issue affects Secomea GateManager Web UI and is a Cross-Site Request Forgery (CSRF) vulnerability. The available connected sources describe that versions prior to Secomea GateManager 9.7 are vulnerable to attackers issuing GET requests within a logged-in user session, enabling ...