12 matches found
EUVD-2019-3896
Malware in sbrugna...
CVE-2019-12254
In multiple Tecson Tankspion and GOKs SmartBox 4 products the affected application doesn't properly restrict access to an endpoint that is responsible for saving settings, to a unauthenticated user with limited access rights. Based on the lack of adequately implemented access-control rules, by...
Improper access control
In multiple Tecson Tankspion and GOKs SmartBox 4 products the affected application doesn't properly restrict access to an endpoint that is responsible for saving settings, to a unauthenticated user with limited access rights. Based on the lack of adequately implemented access-control rules, by...
CVE-2019-12254
CVE-2019-12254 affects Tecson Tankspion and GOKs SmartBox 4 products, where an endpoint that saves settings does not properly restrict access, allowing an unauthenticated user with limited rights to change settings due to weak ACL enforcement. Documents confirm a lack of adequately implemented ac...
TECSON/GOK SmartBox 授权问题漏洞
TECSON/GOK SmartBox is a family of electronic fuel tank management systems from TECSON/GOK, Germany. An authorization issue vulnerability exists in four products in the TECSON/GOK SmartBox family, which arises from a lack of fully implemented access control rules, which could allow a malicious us...
smartbox.com Improper Access Control vulnerability
Open Bug Bounty ID: OBB-997171 Security Researcher Nep13371998 Helped patch 562 vulnerabilities Received 4 Coordinated Disclosure badges Received 7 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting smartbox.com website and...
careers.smartbox.com XSS vulnerability
Open Bug Bounty ID: OBB-678218 Description| Value ---|--- Affected Website:| careers.smartbox.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
smartbox.com XSS vulnerability
Open Bug Bounty ID: OBB-567862 Description| Value ---|--- Affected Website:| smartbox.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
SmartBox <= (page_id) Blind SQL Injection Vulnerability
Exploit for php platform in category web applications ======================================================= SmartBox Exploit database separated by exploit 3 3 type local, remote, DoS, etc. 3 7 7 1 + Site : 1337db.com 1 3 + Support e-mail : submitat1337db.com 3 3 3 7 7 1 I'm KnocKout 1337 Member...
SmartBox - page_id SQL Injection
SmartBox - pageid SQL Injection source: https://www.securityfocus.com/bid/45101/info SmartBox is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromi...
SmartBox - 'page_id' SQL Injection
source: https://www.securityfocus.com/bid/45101/info SmartBox is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or...
SmartBox Blind SQL Injection
================================================================ SmartBox Exploit database separated by exploit 3 3 type local, remote, DoS, etc. 3 7 7 1 + Site : 1337db.com 1 3 + Support e-mail : submitat1337db.com 3 3 3 7 7 1 I'm KnocKout 1337 Member from 1337 DataBase 1 3 3 3 3...