Show filters
32 Total Results
Displaying 31-32 of 32
Sort by:
Attacker Value
Unknown

CVE-2017-12930

Disclosure Date: September 21, 2017 (last updated November 26, 2024)
SQL Injection in the admin interface in TecnoVISION DLX Spot Player4 version >1.5.10 allows remote unauthenticated users to access the web interface as administrator via a crafted password.
0
0
Attacker Value
Unknown

CVE-2017-12929

Disclosure Date: September 21, 2017 (last updated November 26, 2024)
Arbitrary File Upload in resource.php of TecnoVISION DLX Spot Player4 version >1.5.10 allows remote authenticated users to upload arbitrary files leading to Remote Command Execution.
0
0
View More Topics  < Previous