Autore: Angelo Barbosa

CVE-2023-46974 | Best Courier Management System 1.000 URL page cross site scripting

A vulnerability classified as problematic has been found in Best Courier Management System 1.000. This affects an unknown part of the component URL Handler. The manipulation of the argument page leads to cross site scripting. This vulnerability is uniquely identified as CVE-2023-46974. It is possible to initiate the attack remotely. There is no exploit...

Per saperne di più

CVE-2023-49434 | Tenda AX9 22.03.01.46 SetNetControlList list stack-based overflow

A vulnerability was found in Tenda AX9 22.03.01.46. It has been rated as critical. Affected by this issue is some unknown functionality of the file /goform/SetNetControlList. The manipulation of the argument list leads to stack-based buffer overflow. This vulnerability is handled as CVE-2023-49434. The attack needs to be approached within the local network. There is no exploit...

Per saperne di più

CVE-2023-49433 | Tenda AX9 22.03.01.46 SetVirtualServerCfg list stack-based overflow

A vulnerability was found in Tenda AX9 22.03.01.46. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetVirtualServerCfg. The manipulation of the argument list leads to stack-based buffer overflow. This vulnerability is known as CVE-2023-49433. Access to the local network is required for this attack to succeed. There is no exploit...

Per saperne di più