Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Smp-pro4 Firmware Security Vulnerabilities

cve
cve

CVE-2020-6954

An issue was discovered on Cayin SMP-PRO4 devices. A user can discover a saved password by viewing the URL after a Connection String Test. This password is shown in the webpass parameter of a media_folder.cgi?apply_mode=ping_server URI.

6.5CVSS

6.5AI Score

0.001EPSS

2020-01-13 11:15 PM
39
cve
cve

CVE-2020-6955

An issue was discovered on Cayin SMP-PRO4 devices. They allow image_preview.html?filename= reflected XSS.

6.1CVSS

6.3AI Score

0.001EPSS

2020-01-13 11:15 PM
38