Search Results | AttackerKB

4 Total Results

Displaying 1-4 of 4

Attacker Value

Unknown

CVE-2022-38771

Disclosure Date: September 13, 2022 (last updated February 24, 2025)

The mobile application in Transtek Mojodat FAM (Fixed Asset Management) 2.4.6 allows remote attackers to send SCRIPT tags as injected input to the API request.

Attacker Value

Unknown

CVE-2022-38770

Disclosure Date: September 13, 2022 (last updated February 24, 2025)

The mobile application in Transtek Mojodat FAM (Fixed Asset Management) 2.4.6 allows remote attackers to fetch other users' data upon a successful login request.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2022-38769

Disclosure Date: September 13, 2022 (last updated February 24, 2025)

The mobile application in Transtek Mojodat FAM (Fixed Asset Management) 2.4.6 allows remote attackers to fetch cleartext passwords upon a successful login request.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2022-38768

Disclosure Date: September 13, 2022 (last updated February 24, 2025)

The mobile application in Transtek Mojodat FAM (Fixed Asset Management) 2.4.6 allows remote attackers to bypass authorization.

Attack Vector: Network Privileges: None User Interaction: None

4 Total Results

Displaying 1-4 of 4

Unknown

CVE-2022-38771

Unknown

CVE-2022-38770

Unknown

CVE-2022-38769

Unknown

CVE-2022-38768

Quick Cookie Notification