7 matches found
CVE-2023-3512
Relative path traversal vulnerability in Setelsa Security's ConacWin CB, in its 3.8.2.2 version and earlier, the exploitation of which could allow an attacker to perform an arbitrary download of files from the system via the "Download file" parameter...
Path traversal
Relative path traversal vulnerability in Setelsa Security's ConacWin CB, in its 3.8.2.2 version and earlier, the exploitation of which could allow an attacker to perform an arbitrary download of files from the system via the "Download file" parameter...
CVE-2023-4037 SQL injection in Setelsa Security ConacWin
Blind SQL injection vulnerability in the Conacwin 3.7.1.2 web interface, the exploitation of which could allow a local attacker to obtain sensitive data stored in the database by sending a specially crafted SQL query to the xml parameter...
CVE-2023-3512 Relative path traversal in Setelsa Security ConacWin CB
Relative path traversal vulnerability in Setelsa Security's ConacWin CB, in its 3.8.2.2 version and earlier, the exploitation of which could allow an attacker to perform an arbitrary download of files from the system via the "Download file" parameter...
CVE-2023-3512 Relative path traversal in Setelsa Security ConacWin CB
Relative path traversal vulnerability in Setelsa Security's ConacWin CB, in its 3.8.2.2 version and earlier, the exploitation of which could allow an attacker to perform an arbitrary download of files from the system via the "Download file" parameter...
CVE-2023-3512
CVE-2023-3512 affects Setelsa Security ConacWin CB,
Setelsa Security ConacWin CB Path Traversal Vulnerability
Setelsa Security ConacWin CB is an application from Setelsa Security. A path traversal vulnerability exists in Setelsa Security ConacWin CB 3.8.2.2 and earlier versions, which can be exploited by an attacker to perform an arbitrary file download from the system via the Download file parameter...