25 matches found
CVE-2016-8376
An issue was discovered in Kabona AB WebDatorCentral WDC application prior to Version 3.4.0. This non-validated redirect/non-validated forward OPEN REDIRECT allows chaining with authenticated vulnerabilities...
CVE-2016-8347
CVE-2016-8347 affects Kabona AB WebDatorCentral (WDC) prior to version 3.4.0. The root cause is improper handling of authentication attempts, allowing unrestricted brute-force attempts against the login API. Reports indicate remote exploitability with no user interaction required, and the impact ...
CVE-2016-8376
Summary of CVE-2016-8376 : A non-validated redirect/forward (OPEN REDIRECT) vulnerability in Kabona AB WebDatorCentral (WDC) prior to version 3.4.0. The issue allows an attacker to chain with authenticated vulnerabilities, potentially affecting users via crafted URLs that redirect to a malicious ...
Kabona AB WDC Vulnerabilities (Update A)
OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-17-287-07 Kabona AB WDC Vulnerabilities that was published October 13, 2016, on the NCCIC/ICS-CERT web site. Martin Jartelius and John Stock of Outpost 24 have identified vulnerabilities in Kabona AB’s...
Kabona AB WDC Vulnerabilities (Update A)
OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-17-287-07 Kabona AB WDC Vulnerabilities that was published October 13, 2016, on the NCCIC/ICS-CERT web site. Martin Jartelius and John Stock of Outpost 24 have identified vulnerabilities in Kabona AB’s...