VYPR

Web Viewer

by Hanwha Security

CVEs (3)

  • CVE-2017-16524HigNov 6, 2017
    risk 0.63cvss 8.8epss 0.30

    Web Viewer 1.0.0.193 on Samsung SRN-1670D devices suffers from an Unrestricted file upload vulnerability: 'network_ssl_upload.php' allows remote authenticated attackers to upload and execute arbitrary PHP code via a filename with a .php extension, which is then accessed via a…

  • CVE-2025-1888MedMar 14, 2025
    risk 0.30cvss 4.6epss 0.00

    The Leica Web Viewer within the Aperio Eslide Manager Application is vulnerable to reflected cross-site scripting (XSS). An authenticated user can access the slides within a project and injecting malicious JavaScript into the "memo" field. The memo field has a hover over action…

  • CVE-2023-25261CriMar 27, 2023
    risk 0.01cvss 9.8epss 0.02

    Certain Stimulsoft GmbH products are affected by: Remote Code Execution. This affects Stimulsoft Designer (Desktop) 2023.1.4 and Stimulsoft Designer (Web) 2023.1.3 and Stimulsoft Viewer (Web) 2023.1.3. Access to the local file system is not prohibited in any way. Therefore, an…