Vulnerabilities > Articatech

DATE	CVE	VULNERABILITY TITLE	RISK
2019-02-01	CVE-2019-7300	Insufficiently Protected Credentials vulnerability in Articatech Artica Proxy 3.06.200056 Artica Proxy 3.06.200056 allows remote attackers to execute arbitrary commands as root by reading the ressources/settings.inc ldap_admin and ldap_password fields, using these credentials at logon.php, and then entering the commands in the admin.index.php command-line field. network low complexity articatech CWE-522	7.2
2017-12-07	CVE-2017-17055	OS Command Injection vulnerability in Articatech Artica Proxy Artica Web Proxy before 3.06.112911 allows remote attackers to execute arbitrary code as root by conducting a cross-site scripting (XSS) attack involving the username-form-id parameter to freeradius.users.php. network low complexity articatech CWE-78 critical	9.0

Vulnerabilities > Articatech {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Articatech"}]}