RSS   Podatności dla 'Nablarch'   RSS

2019-03-12
 
CVE-2019-5919

CWE-310
 
 
An incomplete cryptography of the data store function by using hidden tag in Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to obtain information of the stored data, to register invalid value, or alter the value via unspecified vectors.

 
 
CVE-2019-5918

CWE-611
 
 
Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to conduct XML External Entity (XXE) attacks via unspecified vectors.

 

Copyright 2024, cxsecurity.com

 

Back to Top