Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2019-16261

šŸ—“ļøĀ 12 Sep 2019Ā 14:07:11Reported byĀ mitreTypeĀ 
cve
Ā cvešŸ”—Ā web.nvd.nist.govšŸ‘Ā 79Ā ViewsšŸŒ WEB

Tripp Lite PDUMH15AT 12.04.0053 unauthenticated POST requests to /Forms/ director

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
Circl		CVE-2019-16261
19 Mar 202516:40
ā€“circl
Cvelist		CVE-2019-16261
12 Sep 201914:07
ā€“cvelist
EUVD		EUVD-2019-7065
7 Oct 202500:30
ā€“euvd
NVD		CVE-2019-16261
12 Sep 201915:15
ā€“nvd
Packet Storm		Tripp Lite SU750XL UPS Privilege Escalation / Missing Authentication
20 Mar 202500:00
ā€“packetstorm
Prion		Design/Logic Flaw
12 Sep 201915:15
ā€“prion
RedhatCVE		CVE-2019-16261
7 Jan 202609:30
ā€“redhatcve
NVD
Node
tripplitepdumh15at_firmwareMatch12.04.0053
AND
tripplitepdumh15atMatch-
ParameterPositionPathDescriptionCWE
netweb_accessrequest body/Forms/network_web_1Unauthenticated POST can modify network settings via /Forms directory (network_web_1).CWE-287
nethttp_accessrequest body/Forms/network_web_1Unauthenticated POST can modify network settings via /Forms directory (network_web_1).CWE-287
nethttp_portrequest body/Forms/network_web_1Unauthenticated POST can modify network settings via /Forms directory (network_web_1).CWE-287
nethttps_accessrequest body/Forms/network_web_1Unauthenticated POST can modify network settings via /Forms directory (network_web_1).CWE-287
nethttps_portrequest body/Forms/network_web_1Unauthenticated POST can modify network settings via /Forms directory (network_web_1).CWE-287
savechangesrequest body/Forms/network_web_1Unauthenticated POST can modify network settings via /Forms directory (network_web_1).CWE-287
startresetrequest body/Forms/requestreset_1Unauthenticated POST can trigger system reset/power actions via /Forms directory (requestreset_1).CWE-287
securityadurequest body/Forms/system_security_1Unauthenticated POST can change admin credentials via /Forms directory (system_security_1).CWE-287
securityad1request body/Forms/system_security_1Unauthenticated POST can change admin credentials via /Forms directory (system_security_1).CWE-287
securityad2request body/Forms/system_security_1Unauthenticated POST can change admin credentials via /Forms directory (system_security_1).CWE-287
Rows per page

Data

Build on a solid foundation withĀ Vulners data

WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data

Api

Power your application withĀ Vulners API

The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access

App

Assess and manage vulnerabilities withĀ VulnersĀ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Mar 2025 14:15Current
9.4High risk
Vulners AI Score9.4
CVSS 28.5
CVSS 3.19.1
EPSS0.00942
CWE-287
cve-2019-16261tripp litepdumh15atfirmwarevulnerabilityunauthenticated post requestsnvdsecurity
79