Infodrom : Security Vulnerabilities, CVEs, CVSS score >= 3
Plaintext Storage of a Password vulnerability in Infodrom Software E-Invoice Approval System allows Read Sensitive Strings Within an Executable.This issue affects E-Invoice Approval System: before v.20230701.
Max CVSS
7.5
EPSS Score
0.09%
Published
2023-07-25
Updated
2023-08-16
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Infodrom Software E-Invoice Approval System allows SQL Injection.This issue affects E-Invoice Approval System: before v.20230701.
Max CVSS
9.8
EPSS Score
0.08%
Published
2023-07-25
Updated
2023-07-31
Buffer overflow in cfingerd 1.4.3 and earlier with the ALLOW_LINE_PARSING option enabled allows local users to execute arbitrary code via a long line in the .nofinger file.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-10-18
Updated
2017-12-19
Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.
Max CVSS
10.0
EPSS Score
1.28%
Published
2001-08-02
Updated
2024-02-15
Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-08-10
Updated
2022-08-17
Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-09-21
Updated
2008-09-09
cfingerd lists all users on a system via search.**@target.
Max CVSS
5.0
EPSS Score
1.22%
Published
1997-05-23
Updated
2022-08-17
7 vulnerabilities found