10 matches found
EUVD-2021-21759
Malware in sbrugna...
EUVD-2019-15728
Malware in sbrugna...
CVE-2024-8314 Improper session handling in B&R APROL
An Incorrect Implementation of Authentication Algorithm and Exposure of Data Element to Wrong Ses-sion vulnerability in the session handling used in B&R APROL 4.4-00P5 may allow an authenticated network attacker to take over a currently active user session without login credentials...
CVE-2024-8314 Improper session handling in B&R APROL
An Incorrect Implementation of Authentication Algorithm and Exposure of Data Element to Wrong Ses-sion vulnerability in the session handling used in B&R APROL 4.4-00P5 may allow an authenticated network attacker to take over a currently active user session without login credentials...
PT-2023-28808 · Broadcom · Broadcom Raid Controller
Name of the Vulnerable Software and Affected Versions: Broadcom RAID Controller affected versions not specified Description: The Broadcom RAID Controller web interface is vulnerable to improper session handling of managed servers on Gateway installation. No information is provided about the...
Symmetricom SyncServer Unauthenticated Remote Command Execution
This module exploits an unauthenticated command injection vulnerability in /controller/ping.php. The S100 through S350 End of Life models should be vulnerable to unauthenticated exploitation due to a session handling vulnerability. Later models require authentication which is not provided in this...
CVE-2022-36179
Fusiondirectory 1.3 suffers from Improper Session Handling...
GHSA-M8C5-5G3H-JJFG freeCap CAPTCHA extension for TYPO3 has vulnerability in the session handling feature
Unspecified vulnerability in the session handling feature in freeCap CAPTCHA srfreecap extension 1.2.0 and earlier for TYPO3 has unknown impact and attack vectors...
ThinkAgile CP-SB (Storage Block) BMC Session Handling Vulnerability - US
Lenovo Security Advisory: LEN-26957 Potential Impact: Unauthorized access Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2019-6161 Summary Description: An internal product security audit discovered a session handling vulnerability in the web interface of ThinkAgile CP-SB...
Code injection
The Web interface in Sendio before 7.2.4 does not properly handle sessions, which allows remote authenticated users to obtain sensitive information from other users' sessions via a large number of requests...