Skip to main content
CVE-2019-11196 CRITICAL POC Act Now

An authentication bypass vulnerability in all versions of ValuePLUS Integrated University Management System (IUMS) allows unauthenticated, remote attackers to gain administrator privileges via the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass SQLi Integrated University Management System
NVD
CVSS 3.0
9.8
EPSS
6.3%
CVE-2019-10880 CRITICAL Act Now

Within multiple XEROX products a vulnerability allows remote command execution on the Linux system, as the "nobody" user through a crafted "HTTP" request (OS Command Injection vulnerability in the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Colorqube 8700 Firmware Colorqube 8900 Firmware Colorqube 9301 Firmware Colorqube 9302 Firmware +1
NVD
CVSS 3.0
9.8
EPSS
8.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy