17 matches found
CVE-2022-0223
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could allow an attacker to create or overwrite critical files that are used to execute code, such as programs or libraries and cause unauthenticated code execution. Affected Products:...
CVE-2022-22731
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in a function that could allow an attacker to create or overwrite critical files that are used to execute code, such as programs or libraries and cause path traversal attacks. Affected...
CVE-2022-22731
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in a function that could allow an attacker to create or overwrite critical files that are used to execute code, such as programs or libraries and cause path traversal attacks. Affected...
CVE-2022-22732
A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could cause all remote domains to access the resources data supplied by the server when an attacker sends a fetch request from third-party site or malicious site. Affected Products: EcoStruxure Power Commission Versions pri...
CVE-2022-0223
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could allow an attacker to create or overwrite critical files that are used to execute code, such as programs or libraries and cause unauthenticated code execution. Affected Products:...
Path traversal
NCH Axon PBX v2.22 and earlier allows path traversal for file disclosure via the logprop?file=/.. substring...
CVE-2021-37462
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via /ipblacklist?errorip= reflected...
CVE-2021-37460
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via /planprop?id= reflected...
Cross site scripting
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via the customer name field stored...
Cross site scripting
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via the primary phone field stored...
Cross site scripting
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via the blacklist IP address stored...
CVE-2021-37458
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via the primary phone field stored...
CVE-2021-37460
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via /planprop?id= reflected...
CVE-2021-37461
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via /extensionsinstruction?id= reflected...
CVE-2021-37462
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via /ipblacklist?errorip= reflected...
eDContainer v2.22 (lg) Local File Inclusion Vulnerability
No description provided by source. | | | \ \ \ / / / \ / | / | / | | | | | | \ V / / \ | | | | | | | | | | | / \ | || | | | | | || || \ || // \ | | | eDContainer v2.22 lg Local File Inclusion Vulnerability Script :...
eDContainer 2.22 - Local File Inclusion
eDContainer 2.22 - Local File Inclusion | | | \ \ \ / / / \ / | / | / | | | | | | \ V / / \ | | | | | | | | | | | / \ | || | | | | | || || \ || // \ | | | eDContainer v2.22 lg Local File Inclusion Vulnerability Script :...