Lucene search

Supersign Cms Security Vulnerabilities

cve

CVE-2018-17173

LG SuperSign CMS allows remote attackers to execute arbitrary code via the sourceUri parameter to...

9.8CVSS

9.7AI Score

0.868EPSS

2018-09-21 05:29 PM

cve

CVE-2018-16288

LG SuperSign CMS allows reading of arbitrary files via signEzUI/playlist/edit/upload/..%2f...

8.6CVSS

8.7AI Score

0.121EPSS

2018-09-14 09:29 PM

cve

CVE-2018-16287

LG SuperSign CMS allows file upload via signEzUI/playlist/edit/upload/..%2f...

9.8CVSS

7.5AI Score

0.006EPSS

2018-09-14 09:29 PM

cve

CVE-2018-16286

LG SuperSign CMS allows authentication bypass because the CAPTCHA requirement is skipped if a captcha:pass cookie is sent, and because the PIN is limited to four...

9.8CVSS

7.5AI Score

0.007EPSS

2018-09-14 09:29 PM

cve

CVE-2018-16706

LG SuperSign CMS allows TVs to be rebooted remotely without authentication via a direct HTTP request to /qsr_server/device/reboot on port...

7.5CVSS

7.5AI Score

0.001EPSS

2018-09-14 09:29 PM