PT-2022-4703 · Cognex · Cognex 3D-A1000 Dimensioning System

Name of the Vulnerable Software and Affected Versions: Cognex 3D-A1000 Dimensioning System versions 1.0.3 and prior Description: The issue is related to missing authentication for critical functions, allowing unauthorized users to change the operator account password via web server commands. This...

Multiple Vulnerabilities in Aerohive HiveOS

Aerohive HiveOS is a set of operating systems for use in wireless access points and routers from Aerohive. Aerohive HiveOS suffers from local file inclusion and remote command execution vulnerabilities that could be exploited by an attacker to obtain sensitive information or execute arbitrary...

Invision Board 1.1.1 - 'ipchat.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/6976/info Invision Board is prone to an issue that may allow remote attackers to include files located on attacker-controlled servers. This vulnerability is as a result of insufficient sanitization performed on remote user supplied data used in URI...

Cedric Email Reader 0.4 - Global Configuration Script Remote File Inclusion

source: https://www.securityfocus.com/bid/6820/info It has been reported that Cedric Email Reader is prone to an issue that may allow remote attackers to include malicious files located on remote servers. This issue is present in the 'emailreaderexecuteoneachpage.inc.php' script. Under some...

Cedric Email Reader 0.4 - Global Configuration Script Remote File Inclusion

Cedric Email Reader 0.4 - Global Configuration Script Remote File Inclusion source: https://www.securityfocus.com/bid/6820/info It has been reported that Cedric Email Reader is prone to an issue that may allow remote attackers to include malicious files located on remote servers. This issue is...