An information disclosure vulnerability exists in the ACEManager authentication functionality of Sierra Wireless AirLink ES450 FW 4.9.3. The ACEManager authentication functionality is done in plaintext XML to the web server. An attacker can listen to network traffic upstream from the device to capitalize on this vulnerability.
7f0b91e87a564d26d824adbb7dffa763b108cfaa164e0f92e162509c11ca3762
An exploitable information disclosure vulnerability exists in the ACEManager template_load.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause a information leak, resulting in the disclosure of internal paths and files. An attacker can make an authenticated HTTP request to trigger this vulnerability.
0bfeae904f970d08dabdaa8a014eee4efca75639721f7dd9c6b4b2fd1e02c43f
Joomla ARI Quiz version 3.7.4 suffers from a remote SQL injection vulnerability.
b33d156f931af8bbe95f7353d1848f5fd43066c0a839b0a1560f0e769e1548cf