Visual Planning 8 Authentication Bypass

Posted on 06 April 2024

Unauthenticated attackers can exploit a weakness in the password reset functionality of the Visual Planning application in order to obtain access to arbitrary user accounts including administrators. In case administrative (in the context of Visual Planning) accounts are compromised, attackers can install malicious modules into the application to take over the application server hosting the Visual Planning application. All versions prior to Visual Planning 8 (Build 240207) are affected.

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Exploits :

Online Tours And Travels Management System 1.0 SQL Injection
osCommerce 4 Cross Site Scripting
ESET NOD32 Antivirus 17.1.11.0 Unquoted Service Path
Doctor Appointment Management System 1.0 Cross Site Scripting
Kemp LoadMaster Unauthenticated Command Injection

Last 20