EA Origin versions prior to 10.5.38 suffer from a remote code execution vulnerability.
The IDAL FTP server fails to ensure that directory change requests do not change to locations outside of the FTP servers root directory. An authenticated attacker can simply traverse outside…
The IDAL FTP server is vulnerable to memory corruption through insecure use of user supplied format strings. An attacker can abuse this functionality to bypass authentication or execute code on…
ABB HMI fails to perform any signature validation checking during two different transmission methods for upgrade.
The IDAL HTTP server CGI interface contains a URL, which allows an unauthenticated attacker to bypass authentication and gain access to privileged functions. In the IDAL CGI interface, there is…
AZADMIN CMS of HIDEA version 1.0 suffers from a remote SQL injection vulnerability.
GSearch version 1.0.1.0 suffers from a denial of service vulnerability.
GrandNode versions 4.40 and below suffer from arbitrary file download and path traversal vulnerabilities.
dotProject version 2.1.9 suffers from multiple remote SQL injection vulnerabilities.
SeedDMS versions prior to 5.1.11 suffers from persistent cross site scripting vulnerability in out.UsrMgr.php.