trs-sas.it Improper Access Control vulnerability OBB-3844459

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Nokia BTS TRS Web Console Authentication Bypass (CVE-2021-31932)

An authentication bypass vulnerability exists in Nokia BTS TRS Web Console. Successful exploitation of this vulnerability would allow remote attacker to obtain sensitive information and gain unauthorized access into the affected system...

CVE-2021-31932

Nokia BTS TRS web console FTMW20FP22019.08.160010 allows Authentication Bypass. A malicious unauthenticated user can get access to all the functionalities exposed via the web panel, circumventing the authentication process, by using URL encoding for the . dot character...

Authentication flaw

Nokia BTS TRS web console FTMW20FP22019.08.160010 allows Authentication Bypass. A malicious unauthenticated user can get access to all the functionalities exposed via the web panel, circumventing the authentication process, by using URL encoding for the . dot character...

CVE-2021-31932

Nokia BTS TRS web console FTMW20FP22019.08.160010 allows Authentication Bypass. A malicious unauthenticated user can get access to all the functionalities exposed via the web panel, circumventing the authentication process, by using URL encoding for the . dot character...

CVE-2021-31932

The CVE affects Nokia BTS TRS Web Console (FTM_W20_FP2_2019.08.16_0010). A vulnerability in how the web server (lighttpd) handles special character encoding allows an unauthenticated attacker to bypass authentication via URL-encoded dot characters, granting access to all web panel functionalities...

Nokia Transport Module Authentication Bypass Vulnerability

The TRS web console allows an authenticated user to remotely manage the BTS and its configuration. Analysis discovered an authentication bypass vulnerability in the web management console. BTS TRS web console version FTMW20FP22019.08.160010 is affected. title: Nokia Transport Module Authenticatio...

Nokia Transport Module Authentication Bypass

title: Nokia Transport Module Authentication Bypass case id: CM-2020-02 product: BTS TRS web console FTMW20FP22019.08.160010 vulnerability type: Authentication Bypass severity: Critical found: 2020-09-28 CVE: CVE-2021-31932 by: Cristiano Maruti @cmaruti EXECUTIVE SUMMARY The TRS web console allow...

african-cobra-trs.dostavka2.me Cross Site Scripting vulnerability OBB-2123431

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Cross-Site Scripting Vulnerability in TRS MAS of Beijing Tops Information Technology Co.

TRS MAS is a universal media management system based on the characteristics of audio and video usage in the mobile Internet era. The same audio and video resources can be provided for different terminal platforms, effectively saving costs and simplifying operations. TRS MAS has a cross-site...

Reflective XSS Cross-Site Scripting Vulnerability in TRS WCM Content Collaboration Platform

The TRS WCM Content Collaboration Platform TRS WCM is a content management system. The TRS WCM Content Collaboration Platform suffers from a reflected XSS cross-site scripting vulnerability. The UserName fails to effectively filter user-submitted data, allowing an attacker to construct XSS...

XXE Vulnerability in TRS Portal Personalization Portal

TRS Portal for TORS company developed a set of completely based on J2EE and browser technology, personalized portal general-purpose software. TRS Portal personalized portal ServiceControler Servlet can be accessed without logging in, and there is a XXE entity injection vulnerability. This...

TRS WCM 文件读取漏洞(<=2015-12-17)

No description provided by source...

TRS wcm系统 eg_newuser_dowith.jsp XXE漏洞

No description provided by source...

TRS WCM 文件路径处理不当导致任意文件上传

No description provided by source...

TRS(ids新老版本)设计缺陷(xxe/用户信息泄露包括密码等)

简要描述： TRSids设计缺陷xxe/用户信息泄露包括密码，好久没有发过漏洞了，突然上来看了看，发现漏洞提交页面都变了 详细说明： 首先我们看看web.xml配置文件: ServiceServlet com.trs.idm.admin.service.ServiceServlet ServiceServlet /service 跟进ServiceServlet protected void serviceHttpServletRequest request, HttpServletResponse response throws ServletException, IOExceptio...

TRS WCM parseXMLFile()函数 XXE漏洞

No description provided by source...

TRS init_sysUsers.xml 信息泄漏漏洞

No description provided by source...

TRS WCM common/pre.as 参数_url文件包含漏洞

No description provided by source...

TRS IDS 信息泄露

No description provided by source...