CVE-2023-47024

Cross-Site Request Forgery (CSRF) in NCR Terminal Handler v.1.5.1 leads to a one-click account takeover. This is achieved by exploiting multiple vulnerabilities, including an undisclosed function in t ...

Continue Reading

May 14, 2024

CVE-2023-48118

SQL Injection vulnerability in Quest Analytics LLC IQCRM v.2023.9.5 allows a remote attacker to execute arbitrary code via a crafted request to the Common.svc WSDL...Read More ...

Continue Reading

May 14, 2024

CVE-2023-47020

Multiple Cross-Site Request Forgery (CSRF) chaining in NCR Terminal Handler v.1.5.1 allows privileges to be escalated by an attacker through a crafted request involving user account creation and addin ...

Continue Reading

May 14, 2024

CVE-2023-29863

Medical Systems Co. Medisys Weblab Products v19.4.03 was discovered to contain a SQL injection vulnerability via the tem:statement parameter in the WSDL...Read More ...

Continue Reading

May 14, 2024

Mageia: Security Advisory (MGASA-2013-0224)

The remote host is missing an update for...Read More ...

Continue Reading

April 23, 2024

Kyocera Printer Information Disclosure Vulnerability (Mar 2022) – Active Check

Kyocera printers are prone to an information disclosure ...Read More ...

Continue Reading

April 23, 2024

Fedora: Security Advisory for wsdl4j (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for...Read More ...

Continue Reading

April 22, 2024

.NET Framework – Leaking ObjRefs via HTTP .NET Remoting

.NET Framework Information Disclosure...Read More ...

Continue Reading

April 16, 2024

1 2 3 4 5 27

Back to Main
Subscribe for the latest news: