Lucene search
K

13 matches found

VulnCheck KEV
VulnCheck KEV
added 2025/05/12 12:0 a.m.5 views

VulnCheck KEV: CVE-2022-47075

An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to download sensitive information via the action name parameter to ExportEmployeeDetails.aspx, and to ExportReportingManager.aspx...

7.5CVSS5.8AI score0.59407EPSS
Exploits5References1
Packet Storm
Packet Storm
added 2023/06/23 12:0 a.m.335 views

Smart Office Web 20.28 Information Disclosure / Insecure Direct Object Reference

Exploit Title: Smart Office Web 20.28 - Remote Information Disclosure Unauthenticated Shodan Dork:: inurl:"https://www.shodan.io/search?query=smart+office" Date: 09/Dec/2022 Exploit Author: Tejas Nitin Pingulkar https://cvewalkthrough.com/ Vendor Homepage: https://smartofficepayroll.com/ Software...

7.5CVSS7.1AI score0.59407EPSS
Exploits5
OSV
OSV
added 2023/02/28 11:15 p.m.2 views

CVE-2022-47076

An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to view sensitive information via DisplayParallelLogData.aspx...

7.5CVSS5.8AI score0.59407EPSS
Exploits5References4
NVD
NVD
added 2023/02/28 11:15 p.m.23 views

CVE-2022-47076

An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to view sensitive information via DisplayParallelLogData.aspx...

7.5CVSS7.3AI score0.06182EPSS
Exploits5References4
NVD
NVD
added 2023/02/28 11:15 p.m.33 views

CVE-2022-47075

An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to download sensitive information via the action name parameter to ExportEmployeeDetails.aspx, and to ExportReportingManager.aspx...

7.5CVSS7.3AI score0.59407EPSS
Exploits5References4
OSV
OSV
added 2023/02/28 11:15 p.m.3 views

CVE-2022-47075

An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to download sensitive information via the action name parameter to ExportEmployeeDetails.aspx, and to ExportReportingManager.aspx...

7.5CVSS5.8AI score0.59407EPSS
Exploits5References4
Prion
Prion
added 2023/02/28 11:15 p.m.20 views

Design/Logic Flaw

An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to view sensitive information via DisplayParallelLogData.aspx...

5CVSS7.2AI score0.59407EPSS
Exploits5References4Affected Software1
Prion
Prion
added 2023/02/28 11:15 p.m.10 views

Design/Logic Flaw

An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to download sensitive information via the action name parameter to ExportEmployeeDetails.aspx, and to ExportReportingManager.aspx...

5CVSS7.3AI score0.59407EPSS
Exploits5References4Affected Software1
Cvelist
Cvelist
added 2023/02/28 12:0 a.m.41 views

CVE-2022-47076

An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to view sensitive information via DisplayParallelLogData.aspx...

7.5AI score0.06182EPSS
Exploits5References4
Vulnrichment
Vulnrichment
added 2023/02/28 12:0 a.m.4 views

CVE-2022-47076

An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to view sensitive information via DisplayParallelLogData.aspx...

6.3AI score0.59407EPSS
Exploits5References4
Cvelist
Cvelist
added 2023/02/28 12:0 a.m.39 views

CVE-2022-47075

An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to download sensitive information via the action name parameter to ExportEmployeeDetails.aspx, and to ExportReportingManager.aspx...

7.5AI score0.59407EPSS
Exploits5References4
CVE
CVE
added 2023/02/28 12:0 a.m.63 views

CVE-2022-47076

CVE-2022-47076 affects Smart Office Web 20.28 and earlier. The issue allows attackers to view sensitive information via the DisplayParallelLogData.aspx page, constituting an information disclosure that impacts confidentiality. The CVSS v3.1 base score is 7.5 (HIGH) with NETWORK attack vector, LOW...

7.5CVSS7.2AI score0.59407EPSS
Exploits5References4Affected Software1
CVE
CVE
added 2023/02/28 12:0 a.m.70 views

CVE-2022-47075

Smart Office Web 20.28 and earlier versions are affected by CVE-2022-47075 and CVE-2022-47076, both resulting in information disclosure. The impact is unauthenticated data exposure via insecure endpoints: ExportEmployeeDetails.aspx (action parameter) and ExportReportingManager.aspx for CVE-2022-4...

7.5CVSS7.3AI score0.59407EPSS
In wildExploits5References4Affected Software1
Rows per page
Query Builder