| Page(s) : [1] | Result(s) : 6 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2017-10-23 | CVE-2017-12796 | cve | The Reporting Compatibility Add On before 2.0.4 for OpenMRS, as distributed in OpenMRS Reference Application before 2.6.1, does not authenticate users when deserializing XML inp... |
| 9.8 | 2017-10-23 | CVE-2017-15379 | cve | An authentication bypass exists in the E-Sic 1.0 /index (aka login) URI via '=''or' values for the username and password. |
| 9.8 | 2017-10-23 | CVE-2017-15381 | cve | SQL Injection exists in E-Sic 1.0 via the f parameter to esiclivre/restrito/inc/buscacep.php (aka the zip code search script). |
| 9.8 | 2017-10-23 | CVE-2017-15580 | cve | osTicket 1.10.1 provides a functionality to upload 'html' files with associated formats. However, it does not properly validate the uploaded file's contents and t... |
| 9.8 | 2017-10-23 | CVE-2012-4570 | cve | SQL injection vulnerability in LetoDMS_Core/Core/inc.ClassDMS.php in LetoDMS (formerly MyDMS) before 3.3.8 allows remote attackers to execute arbitrary SQL commands via unspecif... |
| 9.8 | 2017-10-23 | CVE-2014-3741 | cve | The printDirect function in lib/printer.js in the node-printer module 0.0.1 and earlier for Node.js allows remote attackers to execute arbitrary commands via unspecified charact... |
| Page(s) : [1] | Result(s) : 6 |
