13 matches found
EUVD-2025-34054
Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain information such as account names and IP addresses...
CVE-2025-11671
Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain information such as account names and IP addresses...
CVE-2025-11672 EBM Technologies|Uniweb/SoliPACS WebServer - Missing Authentication
Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain user group names...
CVE-2025-11672 EBM Technologies|Uniweb/SoliPACS WebServer - Missing Authentication
Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access a specific page to obtain user group names...
EBM Uniweb/SoliPACS WebServer 访问控制错误漏洞
EBM Uniweb/SoliPACS WebServer is a medical image archiving and communication system from Enterprise Business Machine EBM, Inc. of Taiwan, China. An access control error vulnerability exists in the EBM Uniweb/SoliPACS WebServer that stems from a lack of authentication, which could allow an...
EBM Uniweb/SoliPACS WebServer 访问控制错误漏洞
EBM Uniweb/SoliPACS WebServer is a medical image archiving and communication system from Enterprise Business Machine EBM, Inc. of Taiwan, China. An access control error vulnerability exists in the EBM Uniweb/SoliPACS WebServer that stems from a lack of authentication and could allow an...
CVE-2024-26262
EBM Technologies Uniweb/SoliPACS WebServer's query functionality lacks proper restrictions of user input, allowing remote attackers authenticated as regular user to inject SQL commands for reading, modifying, and deleting database records, as well as executing system commands. Attackers may even...
Sql injection
EBM Technologies Uniweb/SoliPACS WebServer's query functionality lacks proper restrictions of user input, allowing remote attackers authenticated as regular user to inject SQL commands for reading, modifying, and deleting database records, as well as executing system commands. Attackers may even...
CVE-2024-26262
The CVE-2024-26262 entry concerns EBM Technologies Uniweb/SoliPACS WebServer. The Connected documents confirm a concrete issue: the WebServer’s query function does not properly restrict user input, enabling SQL injection by authenticated regular users. This can lead to reading/modifying/deleting ...
CVE-2024-26262 EBM Technologies Uniweb/SoliPACS WebServer - SQL Injection
EBM Technologies Uniweb/SoliPACS WebServer's query functionality lacks proper restrictions of user input, allowing remote attackers authenticated as regular user to inject SQL commands for reading, modifying, and deleting database records, as well as executing system commands. Attackers may even...
CVE-2024-26262 EBM Technologies Uniweb/SoliPACS WebServer - SQL Injection
EBM Technologies Uniweb/SoliPACS WebServer's query functionality lacks proper restrictions of user input, allowing remote attackers authenticated as regular user to inject SQL commands for reading, modifying, and deleting database records, as well as executing system commands. Attackers may even...
EBM Technologies Uniweb SQL Injection Vulnerability
EBM Technologies Uniweb is a zero footprint universal viewer from EBM Technologies that works in any web browser and supports viewing DICOM and non-DICOM data. An SQL injection vulnerability exists in the EBM Technologies Uniweb/SoliPACS WebServer, which stems from the query function lacking prop...
Pre Dynamic Institution Web SQL Injection
--------------------------------------------------------- Portal Name: PRE DYNAMIC INSTITUTION WEB Vendor : http://preproject.com/uniweb.asp Author : PouyaServer , [email protected] Vulnerability : SQL,DD --------------------------------------------------------- Auth Bypass:...