Lucene search

K

7 matches found

CVE
CVE
added 2023/10/03 11:15 a.m.45 views

CVE-2023-4097

The file upload functionality is not implemented correctly and allows uploading of any type of file. As a prerequisite, it is necessary for the attacker to log into the application with a valid username.

8.8CVSS8.7AI score0.00107EPSS
CVE
CVE
added 2023/10/03 12:15 p.m.35 views

CVE-2023-4099

The QSige Monitor application does not have an access control mechanism to verify whether the user requesting a resource has sufficient permissions to do so. As a prerequisite, it is necessary to log into the application.

7.6CVSS6.6AI score0.00027EPSS
CVE
CVE
added 2023/10/03 12:15 p.m.35 views

CVE-2023-4103

QSige statistics are affected by a remote SQLi vulnerability. It has been identified that the web application does not correctly filter input parameters, allowing SQL injections, DoS or information disclosure. As a prerequisite, it is necessary to log into the application.

8.8CVSS8.7AI score0.00138EPSS
CVE
CVE
added 2023/10/03 12:15 p.m.31 views

CVE-2023-4098

It has been identified that the web application does not correctly filter input parameters, allowing SQL injections, DoS or information disclosure. As a prerequisite, it is necessary to log into the application.

8.8CVSS8.7AI score0.0015EPSS
CVE
CVE
added 2023/10/03 12:15 p.m.28 views

CVE-2023-4102

QSige login SSO does not have an access control mechanism to verify whether the user requesting a resource has sufficient permissions to do so. As a prerequisite, it is necessary to log into the application.

8.8CVSS8.7AI score0.00164EPSS
CVE
CVE
added 2023/10/03 12:15 p.m.25 views

CVE-2023-4100

Allows an attacker to perform XSS attacks stored on certain resources. Exploiting this vulnerability can lead to a DoS condition, among other actions.

8.2CVSS6.7AI score0.00067EPSS
CVE
CVE
added 2023/10/03 12:15 p.m.25 views

CVE-2023-4101

The QSige login SSO does not have an access control mechanism to verify whether the user requesting a resource has sufficient permissions to do so. As a prerequisite, it is necessary to log into the application.

8.8CVSS7AI score0.0008EPSS