Home » Archive by category "Security Advisories"

Security Advisory 2105-01


Trovent Security GmbH discovered that the VeryFitPro mobile application performs all communication with the backend API via cleartext HTTP.

Weiterlesen...


Security Advisory 2104-02


Trovent Security GmbH discovered a critical vulnerability in the server API of the mobile apps Sanitas HealthCoach and HealthForYou.

Weiterlesen...


Security Advisory 2104-01


Trovent Security GmbH discovered a vulnerability in the server API of the mobile apps Sanitas HealthCoach and HealthForYou

Weiterlesen...


Security Advisory 2103-02


Trovent Security GmbH discovered multiple Cross-Site-Scripting vulnerabilities in ERPNext 13.0.0/12.18.0

Weiterlesen...


Security Advisory 2103-01


Trovent Security GmbH discovered an SQL Injection vulnerability in ERPNext 13.0.0/12.18.0

Weiterlesen...


Security Advisory 2010-01


Trovent Security GmbH discovered an email address enumeration vulnerability in the password reset function of the chat application Rocket.Chat. This vulnerability lets an unauthorized user enumerate registered email addresses on the instance of Rocket.Chat.

Weiterlesen...


Security Advisory 2004-01


Security Advisory

Trovent Security GmbH discovered an SQL injection vulnerability in a web application of Hepstar. An attacker is able to execute SQL commands without authentication. It is possible to read data from all tables of the database.

Weiterlesen...