9 matches found
Tecknodreams SapphireIMS Encryption Issue Vulnerability
Tecknodreams SapphireIMS is an ITIL 2011 certified enterprise class service management system from Tecknodreams India. A security vulnerability exists in Tecknodreams SapphireIMS 40971, which stems from passwords in the database being stored in Base64 format. No details of the vulnerability are...
Unspecified Vulnerability in Tecknodreams SapphireIMS
Tecknodreams SapphireIMS is an ITIL 2011 certified enterprise class service management system from Tecknodreams India. A security vulnerability exists in Tecknodreams SapphireIMS 40971, which can be exploited by an attacker for username enumeration...
Tecknodreams SapphireIMS Incorrect Privilege Assignment Vulnerability
Tecknodreams SapphireIMS is an ITIL 2011 certified enterprise class service management system from Tecknodreams India. A security vulnerability exists in Tecknodreams SapphireIMS 40971, where a guest user can change the password of an administrative user by using an insecure object direct referen...
Tecknodreams SapphireIMS Insecure Direct Object Reference Vulnerability
Tecknodreams SapphireIMS is an ITIL 2011 certified enterprise class service management system from Tecknodreams India. A security vulnerability exists in Tecknodreams SapphireIMS 40971. The vulnerability stems from an insecure direct object reference in the local user creation function. An attack...
Tecknodreams SapphireIMS OS Command Injection Vulnerability
Tecknodreams SapphireIMS is an ITIL 2011 certified enterprise class service management system from Tecknodreams India. Tecknodreams SapphireIMS 5.0 suffers from an operating system command injection vulnerability that originates in SapphireIMS 5.0, where hardcoded credentials username: sapphire,...
Tecknodreams SapphireIMS Trust Management Issue Vulnerability
Tecknodreams SapphireIMS is an ITIL 2011 certified enterprise-class service management system from Tecknodreams India.A trust management issue vulnerability exists in SapphireIMS 5.0, which stems from the fact that in SapphireIMS 5.0, it is possible to use hard-coded credentials in the client...
Tecknodreams SapphireIMS Access Control Error Vulnerability
Tecknodreams SapphireIMS is an ITIL 2011 certified enterprise-class service management system from Tecknodreams India.A security vulnerability exists in Tecknodreams SapphireIMS version 5.0, which stems from direct access to the RemoteMgmtTaskSave feature and no JSESSIONID, which can be used to...
Tecknodreams SapphireIMS Default Configuration Issue Vulnerability
Tecknodreams SapphireIMS is an ITIL 2011 certified enterprise class service management system from Tecknodreams India. A default configuration issue vulnerability exists in Tecknodreams SapphireIMS version 5.0, which stems from the use of default sapphire:ims credentials to connect clients to the...
Tecknodreams SapphireIMS 跨站请求伪造漏洞
Tecknodreams SapphireIMS is an ITIL 2011 certified Enterprise Service Management System from Tecknodreams India. Sapphire IMS 5.0 has a cross-site request forgery vulnerability that stems from the absence of CSRF tokens throughout the application in Sapphire IMS 5.0. This could lead to a CSRF...