Show filters
6 Total Results
Displaying 1-6 of 6
Sort by:
Attacker Value
Unknown
CVE-2023-21412
Disclosure Date: August 03, 2023 (last updated November 08, 2024)
User provided input is not sanitized on the AXIS License Plate Verifier specific “search.cgi” allowing for
SQL injections.
0
Attacker Value
Unknown
CVE-2023-21411
Disclosure Date: August 03, 2023 (last updated November 08, 2024)
User provided input is not sanitized in the “Settings > Access Control” configuration interface allowing for
arbitrary code execution.
0
Attacker Value
Unknown
CVE-2023-21410
Disclosure Date: August 03, 2023 (last updated November 08, 2024)
User provided input is not sanitized on the AXIS License Plate Verifier specific “api.cgi” allowing for
arbitrary code execution.
0
Attacker Value
Unknown
CVE-2023-21409
Disclosure Date: August 03, 2023 (last updated October 08, 2023)
Due to insufficient file permissions, unprivileged users could gain access to unencrypted administrator
credentials allowing the configuration of the application.
0
Attacker Value
Unknown
CVE-2023-21408
Disclosure Date: August 03, 2023 (last updated October 08, 2023)
Due to insufficient file permissions, unprivileged users could gain access to unencrypted user credentials
that are used in the integration interface towards 3rd party systems.
0
Attacker Value
Unknown
CVE-2023-21407
Disclosure Date: August 03, 2023 (last updated October 08, 2023)
A broken access control was found allowing for privileged escalation of the operator account to gain
administrator privileges.
0
