📦 Idweb
by Idattend
🔍 What is Idweb?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
Unauthenticated SQL injection in IDAttend's IDWeb application allows attackers to extract or modify all database data without credentials. This affects IDWeb versions 3.1.052 and earlier, putting orga...
Unauthenticated SQL injection vulnerability in IDAttend's IDWeb application allows attackers to extract or modify all database data without authentication. This affects IDWeb version 3.1.052 and earli...
This vulnerability allows unauthenticated attackers to perform SQL injection attacks on IDAttend's IDWeb application. Attackers can extract or modify all data in the database without needing credentia...
This vulnerability allows unauthenticated attackers to perform SQL injection attacks against IDAttend's IDWeb application. Attackers can extract or modify all data in the database without needing cred...
This vulnerability allows unauthenticated attackers to perform SQL injection attacks against IDAttend's IDWeb application. Attackers can extract or modify all data in the database without needing vali...
Unauthenticated attackers can execute arbitrary SQL queries against IDAttend's IDWeb application, potentially extracting or modifying all database data. This affects all users running IDWeb version 3....
This vulnerability allows unauthenticated attackers to perform SQL injection attacks against IDAttend's IDWeb application. Attackers can extract or modify all data in the database without needing cred...
This vulnerability allows unauthenticated attackers to retrieve student information from IDAttend's IDWeb application by exploiting missing authentication in the GetActiveToiletPasses method. It affec...
This vulnerability allows unauthenticated attackers to extract sensitive student and teacher data from IDAttend's IDWeb application. It affects organizations using IDWeb version 3.1.052 and earlier du...
This vulnerability allows unauthenticated attackers to extract sensitive student data from IDAttend's IDWeb application. It affects organizations using IDWeb version 3.1.052 and earlier. The StudentPo...
This vulnerability allows unauthenticated attackers to extract sensitive student data from IDAttend's IDWeb application. It affects organizations using IDWeb version 3.1.052 and earlier. The StudentPo...
CVE-2023-26574 allows unauthenticated attackers to extract sensitive student data from IDAttend's IDWeb application by exploiting missing authentication in the SearchStudents method. This affects orga...
This vulnerability allows unauthenticated attackers to extract sensitive student data from IDAttend's IDWeb application by exploiting missing authentication in the SearchStudentsRFID method. It affect...
This vulnerability allows authenticated attackers to upload arbitrary files, including ASP/ASPX web shells, to the web root directory of IDAttend's IDWeb application. Successful exploitation leads to ...
CVE-2023-26580 is an unauthenticated arbitrary file read vulnerability in IDAttend's IDWeb application version 3.1.013. This allows attackers without credentials to read any file on the web server, po...