CVE-2024-10122 | Topdata Inner Rep Plus WebServer 2.01 Operator Details Form /InnerRepPlus.html missing password field masking

Inserito da Angelo Barbosa | Ott 18, 2024 | CVE

A vulnerability was found in Topdata Inner Rep Plus WebServer 2.01. It has been classified as problematic. Affected is an unknown function of the file /InnerRepPlus.html of the component Operator Details Form. The manipulation leads to missing password field masking.

This vulnerability is traded as CVE-2024-10122. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-10122 | Topdata Inner Rep Plus WebServer 2.01 Operator Details Form /InnerRepPlus.html missing password field masking

Post correlati

CVE-2024-1909 | Categorify Plugin up to 1.0.7.4 on WordPress categorifyAjaxRenameCategory cross-site request forgery

CVE-2024-32229 | FFmpeg 7.0 vf_tiltandshift.c copy_column heap-based overflow

CVE-2023-47115 | HumanSignal label-studio up to 1.9.1 users/functions.py cross site scripting (GHSA-q68h-xwq5-mm7x)

CVE-2024-38746 | MakeStories Plugin up to 3.0.3 on WordPress path traversal