CVE-2020-11718

CVE-2020-11718 affects Programi Bilanc build 007 release 014 (and earlier). The issue is that software-update packages are downloaded via cleartext HTTP, exposing update delivery to eavesdropping or tampering. NVD attributes a CVSS‑2 base score of 5.8 (PARTIAL confidentiality and integrity impact...

CVE-2020-8995

Programi Bilanc Build 007 Release 014 31.01.2020 supplies a .exe file containing several hardcoded credentials to different servers that allow remote attackers to gain access to the complete infrastructure including the website, update server, and external issue tracking tools...

CVE-2020-11717

An issue was discovered in Programi 014 31.01.2020. It has multiple SQL injection vulnerabilities...

CVE-2020-11717

An issue was discovered in Programi 014 31.01.2020. It has multiple SQL injection vulnerabilities...

Sql injection

An issue was discovered in Programi 014 31.01.2020. It has multiple SQL injection vulnerabilities...

CVE-2020-8995

Programi Bilanc Build 007 Release 014 31.01.2020 supplies a .exe file containing several hardcoded credentials to different servers that allow remote attackers to gain access to the complete infrastructure including the website, update server, and external issue tracking tools...

CVE-2020-8995

The CVE-2020-8995 entry concerns Programi Bilanc Build 007 Release 014 (dated 31.01.2020): a .exe contains hardcoded credentials to multiple servers, enabling remote attackers to access the website, update server, and external issue tracking tools. The root cause is embedded credentials in the ex...

CVE-2020-11717

CVE-2020-11717 affects Programi 014 (31.01.2020) with multiple SQL injection vulnerabilities. Root cause: unsafely constructed SQL queries enabling injection. Impact per CVSS: HIGH (v2) / CRITICAL (v3.1) with Confidentiality, Integrity, Availability = HIGH/ HIGH/ HIGH. Exploitation details are no...

CVE-2020-11717

An issue was discovered in Programi 014 31.01.2020. It has multiple SQL injection vulnerabilities...

Bilanc Shpk Programi Bilanc build Trust Management Issues Vulnerabilities

Bilanc Shpk Programi Bilanc is a software for generating balance sheets from Bilanc Shpk, Alphania. A vulnerability with trust management issues exists in Programi Bilanc build 014 31.01.2020 007 distribution and below. During installation, it defaults to using the account administrator and...

Bilanc Shpk Programi Bilanc SQL Injection Vulnerability

Bilanc Shpk Programi Bilanc is a software for generating balance sheets from Bilanc Shpk, Alphania. A security vulnerability exists in Bilanc Shpk Programi Bilanc 014 version 31.01.2020. It has multiple SQL injection vulnerabilities...

Bilanc Shpk Programi Bilanc build Security Vulnerabilities

Bilanc Shpk Programi Bilanc is a software for generating balance sheets from Bilanc Shpk, Alphania. A security vulnerability exists in Programi Bilanc build 007 distribution 014 31.01.2020 and below, whose software update packages are downloaded via explicit HTTP...