3 matches found
CVE-2023-3512
CVE-2023-3512 affects Setelsa Security ConacWin CB,
CVE-2020-25068
CVE-2020-25068 affects Setelsa Conacwin v3.7.1.2 and is a local file inclusion (LFI) vulnerability allowing an unauthenticated attacker to read internal server files via a directory traversal URI (http://IP:PORT/../../path/file_to_disclose). Public Red Hat/NVD records confirm the issue with that ...
CVE-2023-4037
CVE-2023-4037 affects Setelsa Security ConacWin CB 3.7.1.2. A blind SQL injection in the Conacwin web interface allows a local attacker to obtain sensitive data by sending a specially crafted SQL query to the xml parameter. The vulnerability targets the web interface component, with impact to con...