15 matches found
CVE-2019-18925
Systematic IRIS WebForms 5.4 and its functionalities can be accessed and used without any form of authentication...
EUVD-2019-8599
Malware in sbrugna...
EUVD-2019-8600
Malware in sbrugna...
EUVD-2019-8598
Malware in sbrugna...
CVE-2019-18924
Systematic IRIS WebForms 5.4 is vulnerable to directory traversal. By manipulating variables that reference files with ../ and variations, it is possible to list all the directories and check if a particular file exists...
CVE-2019-18924
Systematic IRIS WebForms 5.4 is vulnerable to directory traversal. By manipulating variables that reference files with ../ and variations, it is possible to list all the directories and check if a particular file exists...
CVE-2019-18926
Systematic IRIS Standards Management ISM v2.1 SP1 89 is vulnerable to unauthenticated reflected Cross Site Scripting XSS. A user input related to dialog information is reflected directly in the web page, allowing a malicious user to conduct a Cross Site Scripting attack against users of the...
CVE-2019-18925
Systematic IRIS WebForms 5.4 and its functionalities can be accessed and used without any form of authentication...
Directory traversal
Systematic IRIS WebForms 5.4 is vulnerable to directory traversal. By manipulating variables that reference files with ../ and variations, it is possible to list all the directories and check if a particular file exists...
Cross site scripting
Systematic IRIS Standards Management ISM v2.1 SP1 89 is vulnerable to unauthenticated reflected Cross Site Scripting XSS. A user input related to dialog information is reflected directly in the web page, allowing a malicious user to conduct a Cross Site Scripting attack against users of the...
CVE-2019-18925
Systematic IRIS WebForms 5.4 and its functionalities can be accessed and used without any form of authentication...
CVE-2019-18926
Systematic IRIS Standards Management ISM v2.1 SP1 89 is vulnerable to unauthenticated reflected Cross Site Scripting XSS. A user input related to dialog information is reflected directly in the web page, allowing a malicious user to conduct a Cross Site Scripting attack against users of the...
CVE-2019-18926
CVE-2019-18926 affects Systematic IRIS Standards Management (ISM) v2.1 SP1 89. It is vulnerable to unauthenticated reflected XSS via a user input (dialog information) reflected in the page. The Red Hat/NVD entries confirm the same description. No explicit exploit details or remediation are provid...
CVE-2019-18924
CVE-2019-18924 affects IRIS WebForms 5.4. The root cause is a directory-traversal flaw: manipulating file-referencing variables with ../ and variations allows listing directories and checking for file existence. Exploitation or in-wild details are not provided in the connected documents. Remediat...
CVE-2019-18924
Systematic IRIS WebForms 5.4 is vulnerable to directory traversal. By manipulating variables that reference files with ../ and variations, it is possible to list all the directories and check if a particular file exists...