[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250770

 
 

909

 
 

196157

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 249579 Download | Alert*

Cross-Site scripting vulnerability in Micro Focus Access Manager product, affects all version prior to version 5.0. The vulnerability could cause configuration destruction.

The encryption function of NHIServiSignAdapter fail to verify the file path input by users. Remote attacker can access arbitrary files through the flaw without privilege.

NHIServiSignAdapter fails to verify the length of digital credential files��� path which leads to a heap overflow loophole. Remote attackers can use the leak to execute code without privilege.

The digest generation function of NHIServiSignAdapter has not been verified for parameter���s length, which leads to a stack overflow loophole. Remote attackers can use the leak to execute code without privilege.

Multiple functions of NHIServiSignAdapter failed to verify the users��� file path, which leads to the SMB request being redirected to a malicious host, resulting in the leakage of user's credential.

The digest generation function of NHIServiSignAdapter has not been verified for source file path, which leads to the SMB request being redirected to a malicious host, resulting in the leakage of user's credential.

This command injection vulnerability allows attackers to execute arbitrary commands in a compromised application. QNAP have already fixed this vulnerability in the following versions of QTS and QuTS hero.

HGiga MailSherlock contains weak authentication flaw that attackers grant privilege remotely with default password generation mechanism.

MailGates and MailAudit products contain Command Injection flaw, which can be used to inject and execute system commands from the cgi parameter after attackers obtain the user���s access token.

The function, view the source code, of HGiga MailSherlock does not validate specific characters. Remote attackers can use this flaw to download arbitrary system files.


Pages:      Start    12620    12621    12622    12623    12624    12625    12626    12627    12628    12629    12630    12631    12632    12633    ..   24957

© SecPod Technologies