Vulnerabilities > Goautodial

DATE	CVE	VULNERABILITY TITLE	RISK
2021-12-07	CVE-2021-43175	Improper Authentication vulnerability in Goautodial and Goautodial API The GOautodial API prior to commit 3c3a979 made on October 13th, 2021 exposes an API router that accepts a username, password, and action that routes to other PHP files that implement the various API functions. network low complexity goautodial CWE-287	7.5
2021-12-07	CVE-2021-43176	Path Traversal vulnerability in Goautodial and Goautodial API The GOautodial API prior to commit 3c3a979 made on October 13th, 2021 takes a user-supplied “action” parameter and appends a .php file extension to locate and load the correct PHP file to implement the API call. network low complexity goautodial CWE-22	8.8

Vulnerabilities > Goautodial {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Goautodial"}]}