- Web application -
-
[CVE-2020-25566] SapphireIMS: Unauthenticated account takeover
-
[CVE-2020-25565] SapphireIMS: Unprivileged user remote command execution on server
-
[CVE-2020-25564] SapphireIMS: Unprivileged user remote command execution (create local admin on clients)
-
[CVE-2020-25563] SapphireIMS: Unauthenticated remote command execution (create local admin on clients)
-
[CVE-2020-25562] SapphireIMS: CSRF
-
[CVE-2020-25560] SapphireIMS: Unauthenticated remote command execution on server
-
[CVE-2017-16632] SapphireIMS: Insecure storage of password
-
[CVE-2017-16631] SapphireIMS: IDOR on password reset
-
[CVE-2017-16630] SapphireIMS: IDOR based privilege elevation
-
[CVE-2017-16629] SapphireIMS: Login Page Information Disclosure
