Cross-Site Request Forgery (CSRF) in NCR Terminal Handler v.1.5.1 leads to a one-click account takeover. This is achieved by exploiting multiple vulnerabilities, including an undisclosed function in t ...
Continue ReadingMay 14, 2024
SQL Injection vulnerability in Quest Analytics LLC IQCRM v.2023.9.5 allows a remote attacker to execute arbitrary code via a crafted request to the Common.svc WSDL...Read More ...
Continue ReadingMay 14, 2024
Multiple Cross-Site Request Forgery (CSRF) chaining in NCR Terminal Handler v.1.5.1 allows privileges to be escalated by an attacker through a crafted request involving user account creation and addin ...
Continue ReadingMay 14, 2024
Medical Systems Co. Medisys Weblab Products v19.4.03 was discovered to contain a SQL injection vulnerability via the tem:statement parameter in the WSDL...Read More ...
Continue ReadingMay 14, 2024
The remote host is missing an update for...Read More ...
Continue ReadingApril 23, 2024
Kyocera printers are prone to an information disclosure ...Read More ...
Continue ReadingApril 23, 2024
The remote host is missing an update for...Read More ...
Continue ReadingApril 22, 2024
.NET Framework Information Disclosure...Read More ...
Continue ReadingApril 16, 2024
Back to Main