RSS   Podatności dla 'Iris webforms'   RSS

2019-11-12
 
CVE-2019-18925

CWE-287
 

 
Systematic IRIS WebForms 5.4 and its functionalities can be accessed and used without any form of authentication.

 
 
CVE-2019-18924

CWE-22
 

 
Systematic IRIS WebForms 5.4 is vulnerable to directory traversal. By manipulating variables that reference files with ../ (and variations), it is possible to list all the directories and check if a particular file exists.

 


Copyright 2024, cxsecurity.com

 

Back to Top