Vulnerabilities > 4Mosan
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-12-20 | CVE-2021-44159 | Unrestricted Upload of File with Dangerous Type vulnerability in 4Mosan GCB Doctor 20210811 4MOSAn GCB Doctor’s file upload function has improper user privilege control. | 10.0 |
2021-11-19 | CVE-2021-42338 | Improper Authorization vulnerability in 4Mosan GCB Doctor 20210811/20210916 4MOSAn GCB Doctor’s login page has improper validation of Cookie, which allows an unauthenticated remote attacker to bypass authentication by code injection in cookie, and arbitrarily manipulate the system or interrupt services by upload and execution of arbitrary files. | 10.0 |