RSS   Vulnerabilities for 'Faxfinder'   RSS

2018-10-03
 
CVE-2018-17562

CWE-89
 

 
Multi-Tech FaxFinder before 5.1.6 has SQL Injection via a status/call_details?oid= URI, allowing an attacker to extract the underlying database schema to further disclose other fax server information through different injection points.

 
2017-09-29
 
CVE-2016-10512

 

 
MultiTech FaxFinder before 4.1.2 stores Passwords unencrypted for maintaining the test connectivity function of its LDAP configuration. These credentials are retrieved by the system when the LDAP configuration page is opened and are embedded directly into the HTML source code in cleartext.

 

 >>> Vendor: Multitech 2 Products
Routefinder 550 vpn
Faxfinder


Copyright 2024, cxsecurity.com

 

Back to Top