3 matches found
PT-2024-39041 · Unknown · Wifiburada
Name of the Vulnerable Software and Affected Versions: WiFiBurada versions prior to 1.0.5 Description: The issue is related to an authentication bypass by assumed-immutable data, allowing the manipulation of user-controlled variables. This can potentially be exploited to gain unauthorized access...
PT-2023-2321 · Delta Electronics · Infrasuite Device Master
Name of the Vulnerable Software and Affected Versions: Delta Electronics InfraSuite Device Master versions prior to 1.0.5 Description: The issue is related to a command injection vulnerability that could allow an attacker to inject arbitrary commands, potentially resulting in remote code executio...
EC-CUBE plugin "Mail Magazine Management Plugin" vulnerable to cross-site request forgery
Overview EC-CUBE plugin "Mail Magazine Management Plugin" provided by EC-CUBE CO.,LTD. contains a cross-site request forgery vulnerability CWE-352. Kenta Yamamoto of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Informatio...