![]() filter_lwlist, keyword_rulelist, etc) in every ".asp" page containing a list of stored strings. Trend Micro VPN Proxy Pro version and below contains a vulnerability involving some overly permissive folders in a key directory which could allow a local attacker to obtain privilege escalation on an affected system.Ĭross Site Scripting (XSS) vulnerability in router Asus DSL-N14U-B1 1.1.2.3_805 via the "*list" parameters (e.g. ![]() H3C SSL VPN through allows wnm/login/login.json svpnlang cookie XSS.ĭPTech VPN v8.1.28.0 was discovered to contain an arbitrary file read vulnerability.Ī vulnerability using PendingIntent in Knox VPN prior to SMR Aug-2022 Release 1 allows attackers to access content providers with system privilege. Torguard VPN 4.8, has a vulnerability that allows an attacker to dump sensitive information, such as credentials and information about the server, without admin privileges. Because Gateway API functions mishandle authentication, an authenticated VPN user can inject arbitrary commands. Improper access control in knox_vpn_policy service prior to SMR Oct-2022 Release 1 allows allows unauthorized read of configuration data.Īn issue was discovered in Aviatrix Gateway before and 6.7.x before. ![]()
0 Comments
Leave a Reply. |