Vulnerabilities
Vulnerable Software
Openwaygroup:  >> Way4  Security Vulnerabilities
OpenWay WAY4 ACS before 1.2.278-2693 allows XSS via the /way4acs/enroll action parameter.
CVSS Score
6.1
EPSS Score
0.005
Published
2021-10-11
/way4acs/enroll in OpenWay WAY4 ACS before 1.2.278-2693 allows unauthenticated attackers to leverage response differences to discover whether a specific payment card number is stored in the system.
CVSS Score
5.3
EPSS Score
0.003
Published
2021-10-11


Contact Us

Shodan ® - All rights reserved