15 matches found
EUVD-2014-8218
Malware in sbrugna...
CVE-2020-6641
Two authorization bypass through user-controlled key vulnerabilities in the Fortinet FortiPresence 2.1.0 administration interface may allow an attacker to gain access to some user data via portal manager or portal users parameters...
CVE-2023-7031
Insecure Direct Object Reference vulnerabilities were discovered in the Avaya Aura Experience Portal Manager which may allow partial information disclosure to an authenticated non-privileged user. Affected versions include 8.0.x and 8.1.x, prior to 8.1.2 patch 0402. Versions prior to 8.0 are end ...
CVE-2023-7031
CVE-2023-7031 : Insecure Direct Object Reference in Avaya Aura Experience Portal Manager allows partial information disclosure to an authenticated non-privileged user. Affected: Avaya Aura Experience Portal Manager versions 8.0.x and 8.1.x prior to 8.1.2 patch 0402; versions prior to 8.0 are end ...
PT-2024-15184 · Avaya · Avaya Aura Experience Portal Manager
Name of the Vulnerable Software and Affected Versions: Avaya Aura Experience Portal Manager versions 8.0.x through 8.1.x prior to 8.1.2 patch 0402 Avaya Aura Experience Portal Manager versions prior to 8.0 Description: Insecure Direct Object Reference vulnerabilities were discovered in the Avaya...
CVE-2020-6641
Two authorization bypass through user-controlled key vulnerabilities in the Fortinet FortiPresence 2.1.0 administration interface may allow an attacker to gain access to some user data via portal manager or portal users parameters...
Authorization
Two authorization bypass through user-controlled key vulnerabilities in the Fortinet FortiPresence 2.1.0 administration interface may allow an attacker to gain access to some user data via portal manager or portal users parameters...
Authorizations Bypass in the FortiPresence portal parameters
Two authorization bypass through user-controlled key vulnerabilities in the FortiPresence administration interface may allow an attacker to gain access to some user data via portal manager or portal users parameters...
CVE-2014-8381
Multiple cross-site scripting XSS vulnerabilities in Megapolis.Portal Manager allow remote attackers to inject arbitrary web script or HTML via the 1 dateFrom or 2 dateTo parameter...
CVE-2014-8381
Multiple cross-site scripting XSS vulnerabilities in Megapolis.Portal Manager allow remote attackers to inject arbitrary web script or HTML via the 1 dateFrom or 2 dateTo parameter...
ArcadeBuilder Game Portal Manager 1.7 - Remote SQL Injection Vuln
No description provided by source. --==+================================================================================+==-- --==+ Game Portal Manager v1.7 SQL Injection Vulnerability +==-- --==+================================================================================+==-- AUTHOR: t0pP8uZ...
Sql injection
SQL injection vulnerability in ArcadeBuilder Game Portal Manager 1.7 allows remote attackers to execute arbitrary SQL commands via a usercookie cookie...
CVE-2007-3521
CVE-2007-3521 affects ArcadeBuilder Game Portal Manager 1.7. It is a SQL injection vulnerability exploitable via a usercookie cookie, allowing remote attackers to execute arbitrary SQL commands. The available documents do not provide remediation details or explicit exploit code in this set; no fu...
CVE-2007-3521
SQL injection vulnerability in ArcadeBuilder Game Portal Manager 1.7 allows remote attackers to execute arbitrary SQL commands via a usercookie cookie...
ArcadeBuilder Game Portal Manager 1.7 Remote SQL Injection Vuln
No description provided by source. --==+================================================================================+==-- --==+ Game Portal Manager v1.7 SQL Injection Vulnerability +==-- --==+================================================================================+==-- AUTHOR: t0pP8uZ...