Filtered by vendor Invigo
Subscribe
Total
6 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-10582 | 1 Invigo | 1 Automatic Device Management | 2024-02-28 | 7.5 HIGH | 9.8 CRITICAL |
A SQL injection on the /admin/display_errors.php script of Invigo Automatic Device Management (ADM) through 5.0 allows remote attackers to execute arbitrary SQL requests (including data reading and modification) on the database. | |||||
CVE-2020-10580 | 1 Invigo | 1 Automatic Device Management | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
A command injection on the /admin/broadcast.php script of Invigo Automatic Device Management (ADM) through 5.0 allows remote authenticated attackers to execute arbitrary PHP code on the server as the user running the application. | |||||
CVE-2020-10581 | 1 Invigo | 1 Automatic Device Management | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
Multiple session validity check issues in several administration functionalities of Invigo Automatic Device Management (ADM) through 5.0 allow remote attackers to read potentially sensitive data hosted by the application. | |||||
CVE-2020-10579 | 1 Invigo | 1 Automatic Device Management | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
A directory traversal on the /admin/sysmon.php script of Invigo Automatic Device Management (ADM) through 5.0 allows remote attackers to list the content of arbitrary server directories accessible to the user running the application. | |||||
CVE-2020-10583 | 1 Invigo | 1 Automatic Device Management | 2024-02-28 | 9.0 HIGH | 8.8 HIGH |
The /admin/admapi.php script of Invigo Automatic Device Management (ADM) through 5.0 allows remote authenticated attackers to execute arbitrary OS commands on the server as the user running the application. | |||||
CVE-2020-10584 | 1 Invigo | 1 Automatic Device Management | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
A directory traversal on the /admin/search_by.php script of Invigo Automatic Device Management (ADM) through 5.0 allows remote attackers to read arbitrary server files accessible to the user running the application. |