RSS   Vulnerabilities for 'Akasia'   RSS

2017-08-05
 
CVE-2017-12586

 

 
SLiMS 8 Akasia through 8.3.1 has an arbitrary file reading issue because of directory traversal in the url parameter to admin/help.php. It can be exploited by remote authenticated librarian users.

 
 
CVE-2017-12585

 

 
SLiMS 8 Akasia through 8.3.1 has SQL injection in admin/AJAX_lookup_handler.php (tableName and tableFields parameters), admin/AJAX_check_id.php, and admin/AJAX_vocabolary_control.php. It can be exploited by remote authenticated librarian users.

 
 
CVE-2017-12584

 

 
There is no CSRF mitigation in SLiMS 8 Akasia through 8.3.1. Also, an entire user profile (including the password) can be updated without sending the current password. This allows remote attackers to trick a user into changing to an attacker-controlled password, a complete account takeover, via the passwd1 and passwd2 fields in an admin/modules/system/app_user.php changecurrent=true operation.

 

 >>> Vendor: Slims 2 Products
Slims7 cendana
Akasia


Copyright 2018, cxsecurity.com

 

Back to Top