Show filters
24 Total Results
Displaying 21-24 of 24
Sort by:
Attacker Value
Unknown

CVE-2018-13356

Disclosure Date: November 27, 2018 (last updated November 27, 2024)
Incorrect access control on ajaxdata.php in TerraMaster TOS version 3.1.03 allows attackers to elevate user permissions.
0
0
Attacker Value
Unknown

CVE-2018-13329

Disclosure Date: November 27, 2018 (last updated November 27, 2024)
Cross-site scripting in ajaxdata.php in TerraMaster TOS version 3.1.03 allows attackers to execute JavaScript via the "lines" URL parameter.
0
0
Attacker Value
Unknown

CVE-2018-13337

Disclosure Date: November 27, 2018 (last updated November 27, 2024)
Session Fixation in the web application for TerraMaster TOS version 3.1.03 allows attackers to control users' session cookies via JavaScript.
0
0
Attacker Value
Unknown

CVE-2018-13334

Disclosure Date: November 27, 2018 (last updated November 27, 2024)
Cross-site scripting in handle.php in TerraMaster TOS version 3.1.03 allows attackers to execute JavaScript via the "options[sysname]" parameter.
0
0
View More Topics  < Previous