13 matches found
EUVD-2018-18350
Malware in sbrugna...
SQL injection vulnerability in the website builder system ca***_sh***.aspx page of Hangzhou Orange Promise Technology Co.
Hangzhou Orange Promise Technology Co., Ltd. is a company specializing in Internet branding and Internet marketing. Hangzhou Orange Promise Technology Co., Ltd. building system cash.aspx page SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive information database...
SQL injection vulnerability in website builder system ne***.aspx page of Hangzhou Orange Promise Technology Co.
Hangzhou Orange Promise Technology Co., Ltd. is a company specializing in Internet branding and Internet marketing. Hangzhou Orange Promise Technology Co., Ltd. station building system ne.aspx page SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive information...
SQL injection vulnerability in ab***.aspx page of website building system of Hangzhou Orange Promise Technology Co.
Hangzhou Orange Promise Technology Co., Ltd. is a company focusing on Internet branding and online marketing, specializing in the following areas: branded website customization, WeChat application development, e-commerce platform development, mobile application development. Hangzhou Orange Promis...
CVE-2018-6603
Promise Technology WebPam Pro-E devices allow remote attackers to conduct XSS, HTTP Response Splitting, and CRLF Injection attacks via JavaScript code in a PHPSESSID cookie...
Crlf injection
Promise Technology WebPam Pro-E devices allow remote attackers to conduct XSS, HTTP Response Splitting, and CRLF Injection attacks via JavaScript code in a PHPSESSID cookie...
CVE-2018-6603
Promise Technology WebPam Pro-E devices allow remote attackers to conduct XSS, HTTP Response Splitting, and CRLF Injection attacks via JavaScript code in a PHPSESSID cookie...
CVE-2018-6603
The CVE-2018-6603 issue affects Promise Technology WebPam Pro-E devices, where remote attackers can exploit a failure to filter parameters in the PHPSESSID cookie to trigger XSS, HTTP Response Splitting, and CRLF Injection via JavaScript in the cookie. Public references in CNVD/NVD entries corrob...
Promise WebPAM 2.2.0.13 Cross Site Scripting / SQL Injection
Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities Vendor: Promise Technology, Inc. Product web page: http://www.promise.com Affected version: 2.2.0.13 Summary: WebPAM is a web based Promise Array Management Software that's easy-to use, designed to simplify RAID storage management. WebPAM i...
promise webpam 2.2.0.13 - Multiple Vulnerabilities
promise webpam 2.2.0.13 - Multiple Vulnerabilities Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities Vendor: Promise Technology, Inc. Product web page: http://www.promise.com Affected version: 2.2.0.13 Summary: WebPAM is a web based Promise Array Management Software that's easy-to use,...
Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities
Exploit for php platform in category web applications Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities Vendor: Promise Technology, Inc. Product web page: http://www.promise.com Affected version: 2.2.0.13 Summary: WebPAM is a web based Promise Array Management Software that's easy-to use,...
Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities
Summary WebPAM is a web based Promise Array Management Software that's easy-to use, designed to simplify RAID storage management. WebPAM is specifically designed for Promise HBA. WebPAM can configure, manage or monitor Promise RAID products remotely from a web browser from anywhere in the world...
promise webpam 2.2.0.13 - Multiple Vulnerabilities
Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities Vendor: Promise Technology, Inc. Product web page: http://www.promise.com Affected version: 2.2.0.13 Summary: WebPAM is a web based Promise Array Management Software that's easy-to use, designed to simplify RAID storage management. WebPAM i...