RSS   Vulnerabilities for 'EVM'   RSS

2011-02-28
 
CVE-2011-1105

CWE-79
 

 
Multiple cross-site scripting (XSS) vulnerabilities in Mutare EVM allow remote attackers to inject arbitrary web script or HTML via (1) a delivery address and possibly (2) a PIN.

 
 
CVE-2011-1104

CWE-352
 

 
Multiple cross-site request forgery (CSRF) vulnerabilities in Mutare EVM allow remote attackers to hijack the authentication of arbitrary users for requests that (1) change a PIN, (2) delete messages, (3) add a delivery address, or (4) change a delivery address.

 

 >>> Vendor: Mutare 2 Products
Voice
EVM


Copyright 2024, cxsecurity.com

 

Back to Top