Web Application Firewall

Vulnerability was discovered in TOPMeeting before version 8.8

http://vintagegoodness.com/2015/08/ Overview :

TOPMeeting security issues fixed.

visit Affected Product(s) :

TOPMeeting before version 8.8

Vulnerability Details :

CVE ID :	CVE-2019-13409
	A SQL injection vulnerability was discovered in TOPMeeting before version 8.8 (2019/08/19). An attacker can use a union based injection query string though a search meeting room feature to get databases schema and username/password.
CVE ID :	CVE-2019-13410
	TOPMeeting before version 8.8 (2019/08/19) shows attendees account and password in front end page that allows an attacker to obtain sensitive information by browsing the source code of the page.

Solution :
Update to the latest version

DNS Security Extensions (DNSSEC) – Why Did The Need Arise For Its Implementation?

CVE-2022-2025 : GRANDSTREAM GSD3710 1.0.11.13 STRCOPY STACK-BASED OVERFLOW

CVE-2022-39243 : NUPROCESS UP TO 2.0.4 COMMAND LINE ARGUMENT JAVA_JAVA_LANG_UNIXPROCESS_FORKANDEXEC COMMAND INJECTION

zzcms 2018 template_user.php ml/title code injection

August 26, 2021 No Comments

A vulnerability was found in zzcms 2018 (Content Management System) and classified as critical. This issue affects an unknown function

ZyXEL VPN2S 1.12 Web Server path traversal

September 29, 2021 No Comments

A vulnerability classified as problematic was found in ZyXEL VPN2S 1.12. Affected by this vulnerability is an unknown part of

Zyxel VPN2S 1.12 CGI Program os command injection

September 29, 2021 No Comments

A vulnerability has been found in Zyxel VPN2S 1.12 and classified as critical. This vulnerability affects some unknown processing of

Zyxel USG/USG Flex/Zywall/ATP/VPN up to 4.64 Web-based Management Interface improper authentication

July 2, 2021 No Comments

A vulnerability was found in Zyxel USG, USG Flex, Zywall, ATP and VPN up to 4.64 (Firewall Software). It has

ZyXEL GS1900-8 2.60 LLDP Packet cross site scripting

July 26, 2021 No Comments

A vulnerability was found in ZyXEL GS1900-8 2.60. It has been classified as problematic. This affects an unknown code of

Zynamics BinDiff up to 6 i64 File use after free

June 30, 2021 No Comments

A vulnerability, which was classified as critical, has been found in Zynamics BinDiff up to 6. This issue affects an

What Is Magecart? How To Detect And Mitigate Magecart Attacks?

September 22, 2023 No Comments

Magecart has emerged as a prominent threat to e-commerce websites, putting both businesses and consumers at risk of data breaches

CVE-2023-4291 : Frauscher Sensortechnik FDS101 For FAdC 1.4.24 Code Injection

September 21, 2023 No Comments

Description Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi v1.4.24 and all previous versions are vulnerable to a remote code execution (RCE)

Top 3 Data Breaches This Week

September 20, 2023 No Comments

According to recent news reports, there have been a number of alarming data breaches that have created an urgent situation