Vulnerabilities > Amberdms
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-01-10 | CVE-2010-5292 | Information Exposure vulnerability in Amberdms Billing System Amberdms Billing System (ABS) before 1.4.1, when a multi-instance installation is configured, might allow local users to obtain sensitive information by reading the cache in between runs of the include/cron/services_usage.php cron job. | 1.9 |
2014-01-10 | CVE-2010-5291 | Permissions, Privileges, and Access Controls vulnerability in Amberdms Billing System Amberdms Billing System (ABS) before 1.4.1 does not properly implement blacklisting after detection of invalid login attempts, which makes it easier for remote attackers to obtain access via a brute-force approach. | 6.4 |