@drop-in-gaming/core (=0.1.7), demo-message (=1.0.0) +16 more potentially affected by unknown CVE via canvas-nest.js (>=2.0.3 <=2.0.4)

canvas-nest.js NPM version =2.0.3, =1.0.3, =1.0.0, =1.0.0, =1.0.18, =0.6.32, =0.4.17, =0.0.1, =1.0.0, =1.0.2 and more Source cves: unknown CVE Source advisory: OSV:MAL-2026-4131...

EUVD-2019-3896

Malware in sbrugna...

CVE-2019-12254

In multiple Tecson Tankspion and GOKs SmartBox 4 products the affected application doesn't properly restrict access to an endpoint that is responsible for saving settings, to a unauthenticated user with limited access rights. Based on the lack of adequately implemented access-control rules, by...

Improper access control

In multiple Tecson Tankspion and GOKs SmartBox 4 products the affected application doesn't properly restrict access to an endpoint that is responsible for saving settings, to a unauthenticated user with limited access rights. Based on the lack of adequately implemented access-control rules, by...

CVE-2019-12254

CVE-2019-12254 affects Tecson Tankspion and GOKs SmartBox 4 products, where an endpoint that saves settings does not properly restrict access, allowing an unauthenticated user with limited rights to change settings due to weak ACL enforcement. Documents confirm a lack of adequately implemented ac...

TECSON/GOK SmartBox 授权问题漏洞

TECSON/GOK SmartBox is a family of electronic fuel tank management systems from TECSON/GOK, Germany. An authorization issue vulnerability exists in four products in the TECSON/GOK SmartBox family, which arises from a lack of fully implemented access control rules, which could allow a malicious us...

smartbox.com Improper Access Control vulnerability

Open Bug Bounty ID: OBB-997171 Security Researcher Nep13371998 Helped patch 562 vulnerabilities Received 4 Coordinated Disclosure badges Received 7 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting smartbox.com website and...

careers.smartbox.com XSS vulnerability

Open Bug Bounty ID: OBB-678218 Description| Value ---|--- Affected Website:| careers.smartbox.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

smartbox.com XSS vulnerability

Open Bug Bounty ID: OBB-567862 Description| Value ---|--- Affected Website:| smartbox.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

SmartBox <= (page_id) Blind SQL Injection Vulnerability

Exploit for php platform in category web applications ======================================================= SmartBox Exploit database separated by exploit 3 3 type local, remote, DoS, etc. 3 7 7 1 + Site : 1337db.com 1 3 + Support e-mail : submitat1337db.com 3 3 3 7 7 1 I'm KnocKout 1337 Member...

SmartBox Blind SQL Injection

================================================================ SmartBox Exploit database separated by exploit 3 3 type local, remote, DoS, etc. 3 7 7 1 + Site : 1337db.com 1 3 + Support e-mail : submitat1337db.com 3 3 3 7 7 1 I'm KnocKout 1337 Member from 1337 DataBase 1 3 3 3 3...

SmartBox - page_id SQL Injection

SmartBox - pageid SQL Injection source: https://www.securityfocus.com/bid/45101/info SmartBox is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromi...

SmartBox - &#039;page_id&#039; SQL Injection

source: https://www.securityfocus.com/bid/45101/info SmartBox is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or...