admin console vulnerabilities and exploits

(subscribe to this query)

A Server Side Template Injection in the Entando Admin Console 6.3.9 and before allows a user with privileges to execute FreeMarker template with command execution via freemarker.template.utility.Execute

Entando Admin Console

A vulnerability was found in sequentech admin-console up to 6.1.7 and classified as problematic. Affected by this issue is some unknown functionality of the component Election Description Handler. The manipulation leads to cross site scripting. The attack may be launched remotely...

Sequentech Admin-console

A CSRF exposure exists in NetIQ Access Manager (NAM) 4.4 Identity Server component.

Netiq Netiq Access Manager (nam) Admin Console Netiq Access Manager 4.4

A cross site scripting vulnerability exist in the Administration Console in NetIQ Access Manager (NAM) 4.3 and 4.4.

Netiq Netiq Access Manager (nam) Admin Console Netiq Access Manager 4.3 Netiq Access Manager 4.4

A vulnerability has been found in yanheven console and classified as problematic. Affected by this vulnerability is the function get_zone_hosts/AvailabilityZonesTable of the file openstack_dashboard/dashboards/admin/aggregates/tables.py. The manipulation leads to cross site scrip...

Yanheven Console Console Project Console

Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 could allow a guest user to elevate to admin privileges.

Dover Fueling Solutions Maglink Lx Web Console Configuration Doverfuelingsolutions Maglink Lx Web Console Configuration 2.5.1 Doverfuelingsolutions Maglink Lx Web Console Configuration 2.5.2 Doverfuelingsolutions Maglink Lx Web Console Configuration 2.5.3 Doverfuelingsolutions Maglink Lx Web Console Configuration 2.6.1 Doverfuelingsolutions Maglink Lx Web Console Configuration 2.11 Doverfuelingsolutions Maglink Lx Web Console Configuration 3.0 Doverfuelingsolutions Maglink Lx Web Console Configuration 3.2 Doverfuelingsolutions Maglink Lx Web Console Configuration 3.3

Teradici PCoIP Management Console 20.01.0 and 19.11.1 is vulnerable to unauthenticated password resets via login/resetadminpassword of the default admin account. This vulnerability only exists when the default admin account is not disabled. It is fixed in 20.01.1 and 19.11.2.

Teradici Pcoip Management Console 19.11.1 Teradici Pcoip Management Console 20.01.0

Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote malicious user to retrieve password of any admin or normal user in plain text format.

Escanav Escan Management Console 14.0.1400.2281

A vulnerability has been identified in SIMATIC PCS neo (Administration Console) V4.0 (All versions), SIMATIC PCS neo (Administration Console) V4.0 Update 1 (All versions). The affected application leaks Windows admin credentials. An attacker with local access to the Administratio...

Siemens Simatic Pcs Neo (administration Console) V4.0 Siemens Simatic Pcs Neo (administration Console) V4.0 Update 1 Siemens Simatic Pcs Neo 4.0

OpenZiti is a free and open source project focused on bringing zero trust to any application. An endpoint on the admin panel can be accessed without any form of authentication. This endpoint accepts a user-supplied URL parameter to connect to an OpenZiti Controller and performs a...

Openziti Ziti-console Openziti Openziti

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook