Lucene search

K

Smoothwall Security Vulnerabilities

cve
cve

CVE-2011-1084

A cross-site scripting (XSS) vulnerability in Smoothwall Express...

6.1CVSS

6.1AI Score

0.001EPSS

2020-02-07 09:15 PM
106
cve
cve

CVE-2011-1085

CSRF vulnerability in Smoothwall Express...

8.8CVSS

7.4AI Score

0.001EPSS

2020-02-07 09:15 PM
94
cve
cve

CVE-2011-5284

Cross-site request forgery (CSRF) vulnerability in the web management interface in httpd/cgi-bin/shutdown.cgi in Smoothwall Express 3.1 and 3.0 SP3 and earlier allows remote attackers to hijack the authentication of administrators for requests that perform a reboot via a request to...

7.9AI Score

0.007EPSS

2014-12-31 10:59 PM
16
cve
cve

CVE-2014-9430

Cross-site scripting (XSS) vulnerability in httpd/cgi-bin/vpn.cgi/vpnconfig.dat in Smoothwall Express 3.0 SP3 allows remote attackers to inject arbitrary web script or HTML via the COMMENT parameter in an Add...

6.3AI Score

0.002EPSS

2014-12-31 10:59 PM
20
cve
cve

CVE-2011-5283

Cross-site scripting (XSS) vulnerability in the web management interface in httpd/cgi-bin/ipinfo.cgi in Smoothwall Express 3.1 and 3.0 SP3 and earlier allows remote attackers to inject arbitrary web script or HTML via the IP parameter in a Run...

6.3AI Score

0.003EPSS

2014-12-31 10:59 PM
17
cve
cve

CVE-2014-9431

Multiple cross-site request forgery (CSRF) vulnerabilities in Smoothwall Express 3.1 and 3.0 SP3 allow remote attackers to hijack the authentication of administrators for requests that change the (1) admin or (2) dial password via a request to...

8.1AI Score

0.002EPSS

2014-12-31 10:59 PM
19
cve
cve

CVE-2014-9429

Multiple cross-site scripting (XSS) vulnerabilities in Smoothwall Express 3.1 and 3.0 SP3 allow remote attackers to inject arbitrary web script or HTML via the (1) PROFILENAME parameter in a Save action to httpd/cgi-bin/pppsetup.cgi or (2) COMMENT parameter in an Add action to...

6.2AI Score

0.002EPSS

2014-12-31 10:59 PM
20
cve
cve

CVE-2003-0209

Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer...

7.9AI Score

0.168EPSS

2003-05-05 04:00 AM
32