Search criteria
3 vulnerabilities found for Nagasaki Electron Prefecture of Web Red Book System by Nagasaki Prefectural Government
JVNDB-2006-000604
Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00Summary
Nagasaki Electronic Prefectural Office System SQL injection vulnerability
Details
Nagasaki Prefectural Government has developed an open source electronic prefectural office system. The system contains SQL injection vulnerabilities.
References
| Type | URL | |
|---|---|---|
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000604.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "Nagasaki Prefectural Government has developed an open source electronic prefectural office system. The system contains SQL injection vulnerabilities.",
"link": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000604.html",
"sec:cpe": [
{
"#text": "cpe:/a:misc:nagasaki_electron_prefecture_of_annual_vacation_system",
"@product": "Nagasaki Electron Prefecture of Annual Vacation System",
"@vendor": "Nagasaki Prefectural Government ",
"@version": "2.2"
},
{
"#text": "cpe:/a:misc:nagasaki_electron_prefecture_of_muniment_system",
"@product": "Nagasaki Electron Prefecture of muniment System",
"@vendor": "Nagasaki Prefectural Government ",
"@version": "2.2"
},
{
"#text": "cpe:/a:misc:nagasaki_electron_prefecture_of_web_red_book_system",
"@product": "Nagasaki Electron Prefecture of Web Red Book System",
"@vendor": "Nagasaki Prefectural Government ",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "7.5",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2006-000604",
"sec:references": {
"#text": "http://jvn.jp/en/jp/JVN41550845/index.html",
"@id": "JVN#41550845",
"@source": "JVN"
},
"title": "Nagasaki Electronic Prefectural Office System SQL injection vulnerability"
}
JVNDB-2006-000600
Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00Summary
Nagasaki Electronic Prefectural Office System authentication information vulnerability
Details
Nagasaki Prefectural Government has developed an open source electronic prefectural office system. The system hardcodes some credential information and a remote attacker could impersonate genuine users.
References
| Type | URL | |
|---|---|---|
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000600.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "Nagasaki Prefectural Government has developed an open source electronic prefectural office system. The system hardcodes some credential information and a remote attacker could impersonate genuine users.",
"link": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000600.html",
"sec:cpe": {
"#text": "cpe:/a:misc:nagasaki_electron_prefecture_of_web_red_book_system",
"@product": "Nagasaki Electron Prefecture of Web Red Book System",
"@vendor": "Nagasaki Prefectural Government ",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2006-000600",
"sec:references": {
"#text": "http://jvn.jp/en/jp/JVN6CA72ADB/index.html",
"@id": "JVN#6CA72ADB",
"@source": "JVN"
},
"title": "Nagasaki Electronic Prefectural Office System authentication information vulnerability"
}
JVNDB-2006-000599
Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00Summary
Nagasaki Electronic Prefectural Office System vulnerable to bypass authentication
Details
Nagasaki Prefectural Government has developed an open source electronic prefectural office system. Some of the system contain a vulnerability to bypass authentication.
References
| Type | URL | |
|---|---|---|
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000599.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "Nagasaki Prefectural Government has developed an open source electronic prefectural office system. Some of the system contain a vulnerability to bypass authentication.",
"link": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000599.html",
"sec:cpe": [
{
"#text": "cpe:/a:misc:nagasaki_electron_prefecture_of_annual_vacation_system",
"@product": "Nagasaki Electron Prefecture of Annual Vacation System",
"@vendor": "Nagasaki Prefectural Government ",
"@version": "2.2"
},
{
"#text": "cpe:/a:misc:nagasaki_electron_prefecture_of_muniment_system",
"@product": "Nagasaki Electron Prefecture of muniment System",
"@vendor": "Nagasaki Prefectural Government ",
"@version": "2.2"
},
{
"#text": "cpe:/a:misc:nagasaki_electron_prefecture_of_web_red_book_system",
"@product": "Nagasaki Electron Prefecture of Web Red Book System",
"@vendor": "Nagasaki Prefectural Government ",
"@version": "2.2"
},
{
"#text": "cpe:/a:misc:nagasaki_electron_prefecture_system_of_integration_main_menu",
"@product": "Nagasaki Electron Prefecture System of Integration Main Menu",
"@vendor": "Nagasaki Prefectural Government ",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2006-000599",
"sec:references": {
"#text": "http://jvn.jp/en/jp/JVN836B21C0/index.html",
"@id": "JVN#836B21C0",
"@source": "JVN"
},
"title": "Nagasaki Electronic Prefectural Office System vulnerable to bypass authentication"
}