CVE-2023-41642 - Exploiting Reflected XSS in GruppoSCAI RealGimm via VIEWSTATE Parameter
On September 2023, a set of reflected Cross-Site Scripting (XSS) vulnerabilities were discovered in the ErroreNonGestito.aspx component of GruppoSCAI RealGimm 1.1.37p38, a
CVE-2023-41636 - Inside the SQL Injection Flaw in GruppoSCAI RealGimm v1.1.37p38
In late 2023, a critical security flaw titled CVE-2023-41636 was discovered in the Data Richiesta dal parameter of GruppoSCAI RealGimm v1.1.37p38. This vulnerability
CVE-2023-41635 - How XXE Lets Hackers Read Any File on GruppoSCAI RealGimm v1.1.37p38
In this post, we’ll dive deep into a serious vulnerability—CVE-2023-41635—that affects the RealGimm system by GruppoSCAI. If you use RealGimm v1.1.
CVE-2023-41640 - Exploiting Improper Error Handling in GruppoSCAI RealGimm 1.1.37p38 to Leak Sensitive Information
CVE-2023-41640 is a recently discovered vulnerability affecting GruppoSCAI RealGimm version 1.1.37p38. This flaw resides in how the application handles errors within the ErroreNonGestito.
CVE-2023-41637 - Exploiting Arbitrary File Upload in GruppoSCAI RealGimm 1.1.37p38 via Carica immagine
Security vulnerabilities that let attackers upload dangerous files are among the most serious and easy to exploit. In September 2023, a security issue known as
Episode
00:00:00
00:00:00