3 matches found
Touchpad Trivum WebTouch Setup 2.53 build 13163 - Authentication Bypass
Touchpad Trivum WebTouch Setup 2.53 build 13163 - Authentication Bypass Exploit Title: Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 - Unauthorized Authentication Reset Date: 2018-07-20 Software Link: https://world.trivum-shop.de Version: 2.56 build 13381 - 12-07-2018 Category: webapps...
CVE-2018-13862
The CVE-2018-13862 entry concerns Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 (FW 303). The vulnerability allows unauthorized remote attackers to reset authentication via the URL /xml/system/setAttribute.xml using a GET request with id=0&attr=protectAccess&newValue=0, which can let an a...
CVE-2018-13861
CVE-2018-13861 concerns Touchpad / Trivum WebTouch Setup V9 with version V2.53 build 13163 (FW 303). The root cause is an unauthenticated remote access path that enables an attacker to reboot or perform other functions by issuing a GET to /xml/system/control.xml?action=reboot. The NVD entry descr...