Web Application Firewall

Vulnerability was discovered in TOPMeeting before version 8.8

Overview :

TOPMeeting security issues fixed.

Affected Product(s) :

TOPMeeting before version 8.8

Vulnerability Details :

CVE ID :	CVE-2019-13409
	A SQL injection vulnerability was discovered in TOPMeeting before version 8.8 (2019/08/19). An attacker can use a union based injection query string though a search meeting room feature to get databases schema and username/password.
CVE ID :	CVE-2019-13410
	TOPMeeting before version 8.8 (2019/08/19) shows attendees account and password in front end page that allows an attacker to obtain sensitive information by browsing the source code of the page.

Solution :
Update to the latest version

Latest Spring Vulnerabilities Exploitation – CVE-2022-22965

10+ Best Free SSL Certificate Providers 2023

Latest Spring Vulnerabilities Exploitation – CVE-2022-22965

zzcms 2018 template_user.php ml/title code injection

August 26, 2021 No Comments

A vulnerability was found in zzcms 2018 (Content Management System) and classified as critical. This issue affects an unknown function

ZyXEL VPN2S 1.12 Web Server path traversal

September 29, 2021 No Comments

A vulnerability classified as problematic was found in ZyXEL VPN2S 1.12. Affected by this vulnerability is an unknown part of

Zyxel VPN2S 1.12 CGI Program os command injection

September 29, 2021 No Comments

A vulnerability has been found in Zyxel VPN2S 1.12 and classified as critical. This vulnerability affects some unknown processing of

Zyxel USG/USG Flex/Zywall/ATP/VPN up to 4.64 Web-based Management Interface improper authentication

July 2, 2021 No Comments

A vulnerability was found in Zyxel USG, USG Flex, Zywall, ATP and VPN up to 4.64 (Firewall Software). It has

ZyXEL GS1900-8 2.60 LLDP Packet cross site scripting

July 26, 2021 No Comments

A vulnerability was found in ZyXEL GS1900-8 2.60. It has been classified as problematic. This affects an unknown code of

Zynamics BinDiff up to 6 i64 File use after free

June 30, 2021 No Comments

A vulnerability, which was classified as critical, has been found in Zynamics BinDiff up to 6. This issue affects an

CVE-2023-24997 : APACHE INLONG UP TO 1.5.0 DESERIALIZATION

February 2, 2023 No Comments

Description Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0.

CVE-2022-37708 : DOCKER 20.10.15 BUILD FD82621 PERMISSION

February 1, 2023 No Comments

Description Docker version 20.10.15, build fd82621 is vulnerable to Insecure Permissions. Unauthorized users outside the Docker container can access any

CVE-2023-0240 : LINUX KERNEL UP TO 5.10.160 IO_URING IO_PREP_ASYNC_WORK USE AFTER FREE

January 31, 2023 No Comments

Description There is a logic error in io_uring’s implementation which can be used to trigger a use-after-free vulnerability leading to

Vulnerability was discovered in TOPMeeting before version 8.8

Recent Posts

Latest Spring Vulnerabilities Exploitation – CVE-2022-22965

10+ Best Free SSL Certificate Providers 2023

Latest Spring Vulnerabilities Exploitation – CVE-2022-22965

Follow Us

zzcms 2018 template_user.php ml/title code injection

ZyXEL VPN2S 1.12 Web Server path traversal

Zyxel VPN2S 1.12 CGI Program os command injection

Zyxel USG/USG Flex/Zywall/ATP/VPN up to 4.64 Web-based Management Interface improper authentication

ZyXEL GS1900-8 2.60 LLDP Packet cross site scripting

Zynamics BinDiff up to 6 i64 File use after free

Web Application Firewall Solution

CVE-2023-24997 : APACHE INLONG UP TO 1.5.0 DESERIALIZATION

CVE-2022-37708 : DOCKER 20.10.15 BUILD FD82621 PERMISSION

CVE-2023-0240 : LINUX KERNEL UP TO 5.10.160 IO_URING IO_PREP_ASYNC_WORK USE AFTER FREE