Product
itpison omicard edm
9 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2023-48373
CVE-2023-48372
CVE-2023-48371
CVE-2023-32753
CVE-2023-28700
CVE-2022-35216
CVE-2022-32965
CVE-2022-32964
CVE-2022-32963
all versions
ITPison OMICARD EDM has a path traversal vulnerability within its parameter “FileName” in a specific function. An unauthentica
all versions
ITPison OMICARD EDM 's SMS-related function has insufficient validation for user input. An unauthenticated remote attacker can exp
all versions
ITPison OMICARD EDM’s file uploading function does not restrict upload of file with dangerous type. An unauthenticated remote at
all versions
OMICARD EDM’s file uploading function does not restrict upload of file with dangerous type. An unauthenticated remote attacker c
all versions
OMICARD EDM backend system’s file uploading function does not restrict upload of file with dangerous type. A local area network
>= 5.8 and <= 6.0
OMICARD EDM’s mail image relay function has a path traversal vulnerability. An unauthenticated remote attacker can exploit this
>= 5.8 and <= 6.0
OMICARD EDM has a hard-coded machine key. An unauthenticated remote attacker can use the machine key to send serialized payload to
>= 5.8 and <= 6.0
OMICARD EDM’s API function has insufficient validation for user input. An unauthenticated remote attacker can inject arbitrary S
>= 5.8 and <= 6.0
OMICARD EDM’s mail file relay function has a path traversal vulnerability. An unauthenticated remote attacker can exploit this v