Home » Posts tagged "security advisory"

Security Advisory 2108-02

27.04.2022
Technische Schwachstellen: Anforderungen der ISO 27001 erfüllen

Trovent Security GmbH discovered a user account enumeration vulnerability in the password reset function of the Zepp mobile application.

Weiterlesen...


Security Advisory 2108-01

03.02.2022
Security Advisory

Trovent Security GmbH discovered a user account enumeration vulnerability in the password reset function of the Vivellio mobile application.

Weiterlesen...


Security Advisory 2109-01

15.12.2021
Technische Schwachstellen: Anforderungen der ISO 27001 erfüllen

Trovent Security GmbH discovered an SQL injection vulnerability in the search function of the OpenEMR calendar module

Weiterlesen...


Security Advisory 2106-01

10.11.2021

Trovent Security discovered that the Dolibarr application on default settings allows remote code execution in the website builder module.

Weiterlesen...


Security Advisory 2105-02

10.11.2021
Technische Schwachstellen: Anforderungen der ISO 27001 erfüllen

Trovent Security GmbH discovered that the Dolibarr application does not escape “greater than” and “smaller than” characters if they are reflected in one of the small pop-up windows with details of the object.

Weiterlesen...


Security Advisory 2104-03

05.11.2021

Trovent Security GmbH discovered an inconsistency between the API and the client of HealthForYou & Sanitas HealthCoach.

Weiterlesen...


Security Advisory 2105-01

16.06.2021

Trovent Security GmbH discovered that the VeryFitPro mobile application performs all communication with the backend API via cleartext HTTP.

Weiterlesen...


Security Advisory 2104-02

04.06.2021

Trovent Security GmbH discovered a critical vulnerability in the server API of the mobile apps Sanitas HealthCoach and HealthForYou.

Weiterlesen...


Security Advisory 2104-01

04.06.2021

Trovent Security GmbH discovered a vulnerability in the server API of the mobile apps Sanitas HealthCoach and HealthForYou

Weiterlesen...


Security Advisory 2103-02

11.05.2021

Trovent Security GmbH discovered multiple Cross-Site-Scripting vulnerabilities in ERPNext 13.0.0/12.18.0

Weiterlesen...