Mitel MiCollab AWV 8.1.2.4 and 9.1.3 - Directory Traversal

A Directory Traversal vulnerability in the web conference component of Mitel MiCollab AWV before 8.1.2.4 and 9.x before 9.1.3 could allow an attacker to access arbitrary files from restricted directories of the server via a crafted URL, due to insufficient access validation. A successful exploit...

EUVD-2018-10535

Malware in sbrugna...

EUVD-2020-18289

Malware in sbrugna...

EUVD-2023-58531

Malicious code in bioql PyPI...

The vulnerability of Adobe Connect web conference software, related to deficiencies in the deserialization mechanism, allows attackers to execute arbitrary code.

The vulnerability of Adobe Connect web conference software is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

CVE-2020-25610

The AWV component of Mitel MiCollab before 9.2 could allow an attacker to gain access to a web conference due to insufficient access control for conference codes...

The vulnerability of Adobe Connect web conference software lies in the insufficient protection of the website structure, which allows attackers to execute arbitrary code.

The vulnerability of Adobe Connect web conference software is related to insufficient protection of the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of Adobe Connect web conference software lies in the insufficient protection of the website structure, which allows attackers to execute arbitrary code.

The vulnerability of Adobe Connect web conference software is related to insufficient protection of the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of Adobe Connect web conference software lies in the lack of protective measures for website structures, allowing attackers to enhance their privileges and execute arbitrary code.

The vulnerability of Adobe Connect web conference software relates to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary code...

The vulnerability of Adobe Connect web conference software lies in the lack of protective measures for website structures, allowing attackers to enhance their privileges and execute arbitrary code.

The vulnerability of Adobe Connect web conference software relates to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability can allow a malicious actor to enhance their privileges and execute arbitrary code...

The vulnerability of Adobe Connect web conference software lies in the lack of protective measures for website structures, allowing attackers to enhance their privileges and execute arbitrary code.

The vulnerability of Adobe Connect web conference software relates to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability can allow a malicious actor to enhance their privileges and execute arbitrary code...

The vulnerability of Adobe Connect web conference software lies in the lack of protective measures for website structures, allowing attackers to enhance their privileges and execute arbitrary code.

The vulnerability of Adobe Connect web conference software relates to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability can allow a malicious actor to enhance their privileges and execute arbitrary code...

The vulnerability of Adobe Connect web conference software, related to deficiencies in authentication procedures, allows attackers to escalate their privileges.

The vulnerability of Adobe Connect web conference software is related to deficiencies in the authentication process. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

The vulnerability of components of web conference services and applications of the Mitel MiCollab platform, related to the lack of measures to protect the SQL query structure, allows attackers to execute arbitrary code.

The vulnerability of the components of web conference services and the collaboration application platform Mitel MiCollab is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the web conference component of the MiCollab collaboration platform allows a attacker to perform cross-site scripting attacks.

The vulnerability of the web conference component of the MiCollab collaboration platform is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks...

VulnCheck KEV: CVE-2020-11798

A Directory Traversal vulnerability in the web conference component of Mitel MiCollab AWV before 8.1.2.4 and 9.x before 9.1.3 could allow an attacker to access arbitrary files from restricted directories of the server via a crafted URL, due to insufficient access validation. A successful...

The vulnerability of Adobe Connect web conference software lies in the lack of measures taken to protect the structure of web pages, allowing attackers to carry out XSS attacks.

The vulnerability of Adobe Connect web conference software relates to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

Stored XSS at Guest Lobby

Description Guest Lobby is vulnerable to XSS when users wait to enter the meeting due to inserting unsanitized messages to the element using unsafe innerHTML Proof of Concept 1.Start a new web conference and change Guest policy to "Ask Moderator" role moderator 2.Attacker edit "Message to the...

Mitel MiCollab AWV 8.1.2.4 and 9.1.3 - Directory Traversal / Local File Inclusion Vulnerability

Exploit Title: Mitel MiCollab AWV 8.1.2.4 and 9.1.3 - Directory Traversal and LFI Fix Date: 2020-05 Exploit Author: Kahvi-0 Github: https://github.com/Kahvi-0 Vendor Homepage: https://www.mitel.com/ Vendor Security Advisory:...

Mitel MiCollab AWV 8.1.2.4 and 9.1.3 - Directory Traversal and LFI

Exploit Title: Mitel MiCollab AWV 8.1.2.4 and 9.1.3 - Directory Traversal and LFI Date: 2022-10-14 Fix Date: 2020-05 Exploit Author: Kahvi-0 Github: https://github.com/Kahvi-0 Vendor Homepage: https://www.mitel.com/ Vendor Security Advisory:...