CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

ATTACKERKB•added 2024/09/02 6:15 p.m.•4 views

CVE-2024-6921

Cleartext Storage of Sensitive Information vulnerability in NAC Telecommunication Systems Inc. NACPremium allows Retrieve Embedded Sensitive Data. This issue affects NACPremium: through 01082024...

8.7CVSS5.8AI score0.00097EPSS

Exploits0References3

ATTACKERKB•added 2024/09/02 6:15 p.m.•2 views

CVE-2024-6920

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NAC Telecommunication Systems Inc. NACPremium allows Stored XSS. This issue affects NACPremium: through 01082024...

6.1CVSS5.8AI score0.00169EPSS

Exploits0References3

ATTACKERKB•added 2024/09/02 6:15 p.m.•2 views

CVE-2024-6919

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in NAC Telecommunication Systems Inc. NACPremium allows Blind SQL Injection. This issue affects NACPremium: through 01082024...

9.8CVSS5.8AI score0.00173EPSS

Exploits0References3

OSV•added 2024/09/02 6:15 p.m.•2 views

CVE-2024-6919

9.8CVSS5.8AI score0.00173EPSS

Exploits0References1

NVD•added 2024/09/02 6:15 p.m.•15 views

CVE-2024-6920

6.1CVSS0.00169EPSS

Exploits0References2

Cvelist•added 2024/09/02 12:54 p.m.•19 views

CVE-2024-6920 Stored XSS in NAC Telecommunication's NACPremium

4.8CVSS0.00169EPSS

Exploits0References2

CVE•added 2024/09/02 12:25 p.m.•51 views

CVE-2024-6919

CVE-2024-6919 is a SQL injection vulnerability in NAC Premium (NACPremium) caused by improper neutralization of special elements, enabling blind SQL injection. Affected versions are through 01082024. Connected documents consistently reference this as a NACPremium issue with potential data exposur...

9.8CVSS5.8AI score0.00173EPSS

Exploits0References2Affected Software1

Cvelist•added 2024/09/02 12:25 p.m.•22 views

CVE-2024-6919 SQLi in NAC Telecommunication's NACPremium

9.3CVSS0.00173EPSS

Exploits0References2

Positive Technologies•added 2024/09/02 12:0 a.m.•4 views

PT-2024-37959

Name of the Vulnerable Software and Affected Versions NACPremium versions through 01082024 Description A Cleartext Storage of Sensitive Information issue exists in NAC Telecommunication Systems Inc. NACPremium, allowing the retrieval of embedded sensitive data. Recommendations For NACPremium...

8.7CVSS5.5AI score0.00097EPSS

Exploits0References12

Positive Technologies•added 2024/09/02 12:0 a.m.•2 views

PT-2024-37958

Name of the Vulnerable Software and Affected Versions NACPremium versions through 01082024 Description The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS attacks. The estimated number of potentially...

6.1CVSS5.6AI score0.00169EPSS

Exploits0References11

CNNVD•added 2024/09/02 12:0 a.m.•2 views

NAC Telecommunication NACPremium SQL注入漏洞

NAC Telecommunication NACPremium is an application from NAC Telecommunication, Inc. A SQL injection vulnerability exists in NAC Telecommunication NACPremium 01082024 and prior versions, which stems from improper neutralization of special elements that can lead to blind SQL injection...

9.8CVSS8AI score0.00173EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by