3 matches found
ForceControl Technology ForceControl Web Service Directory Arbitrary File Download Vulnerability
Forcecontrol is a monitoring and configuration software, mainly used for data acquisition and monitoring control. An arbitrary file download vulnerability exists in the ForceControl Web Services directory, which can be exploited by attackers to obtain sensitive information...
Cisco Unified MeetingPlace Web Services Directory Cross-Site Request Forgery Vulnerability
Cisco Unified MeetingPlace conferencing solutions allow organizations to host integrated voice, video, and web conferences. A cross-site request forgery vulnerability exists in the SOAP API endpoint of the web-services directory in Cisco Unified MeetingPlace version 8.6 1.9, which can be exploite...
Cisco Unified MeetingPlace Web Services Directory SOAP API Endpoints Cross-Site Request Forgery Vulnerability
A vulnerability in the SOAP application programming interface API endpoints of the web services directory of Cisco Unified MeetingPlace could allow an unauthenticated, remote attacker to perform a cross-site request forgery CSRF attack. The vulnerability is due to insufficient CSRF protections in...