Lucene search
K

16 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:55 a.m.4 views

CVE-2020-12128

DONG JOO CHO File Transfer iFamily 2.1 allows directory traversal related to the ./etc/ path...

7.5CVSS6.9AI score0.01637EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:27 a.m.3 views

CVE-2019-12128

In ONAP SO through Dublin, by accessing an applicable port 30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271, an attacker gains full access to the respective ONAP services without any authentication. All ONAP Operations Manager OOM setups are affected...

10CVSS7AI score0.01655EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:28 a.m.5 views

CVE-2024-12128

The Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘monthlysalescurrentyear’ parameter in all versions up to, and including, 3.1.2 due to insufficient input sanitization and output escaping. This mak...

6.1CVSS6.3AI score0.00291EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/07 9:27 a.m.10 views

CVE-2024-12128 Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal <= 3.1.2 - Reflected Cross-Site Scripting via monthly_sales_current_year Parameter

The Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘monthlysalescurrentyear’ parameter in all versions up to, and including, 3.1.2 due to insufficient input sanitization and output escaping. This mak...

6.1CVSS6.3AI score0.00291EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/07 9:27 a.m.19 views

CVE-2024-12128 Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal <= 3.1.2 - Reflected Cross-Site Scripting via monthly_sales_current_year Parameter

The Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘monthlysalescurrentyear’ parameter in all versions up to, and including, 3.1.2 due to insufficient input sanitization and output escaping. This mak...

6.1CVSS0.00291EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.12 views

Moxa EDR-810 Server Agent Information Disclosure (CVE-2017-12128)

An exploitable information disclosure vulnerability exists in the Server Agent functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted TCP packet can cause information disclosure. An attacker can send a crafted TCP packet to trigger this vulnerability. This plugin only works with...

7.5CVSS6.1AI score0.48138EPSS
Exploits2References2
NVD
NVD
added 2023/02/27 6:15 p.m.10 views

CVE-2018-12128

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues. Notes: none...

6.4AI score
Exploits0
NVD
NVD
added 2020/04/24 12:15 a.m.7 views

CVE-2020-12128

DONG JOO CHO File Transfer iFamily 2.1 allows directory traversal related to the ./etc/ path...

7.5CVSS7.5AI score0.01637EPSS
Exploits2References1
CVE
CVE
added 2020/04/23 11:5 p.m.38 views

CVE-2020-12128

CVE-2020-12128 affects File Transfer iFamily 2.1, enabling directory traversal via the ./etc/ path. Red Hat and multiple national CNVD/NVD entries corroborate a path traversal vulnerability in iFamily 2.1, potentially allowing an attacker to influence the local application/file system. The CNVD e...

7.5CVSS7.5AI score0.01637EPSS
Exploits2References1Affected Software1
Circl
Circl
added 2020/03/19 5:31 p.m.5 views

CVE-2019-12128

creationtimestamp| type| source ---|---|--- 2020-03-19 17:31:22+00:00| seen| https://t.me/cibsecurity/10627...

10CVSS8.7AI score0.01655EPSS
Exploits0References1
OSV
OSV
added 2020/03/19 2:15 p.m.3 views

CVE-2019-12128

In ONAP SO through Dublin, by accessing an applicable port 30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271, an attacker gains full access to the respective ONAP services without any authentication. All ONAP Operations Manager OOM setups are affected...

9.8CVSS5.8AI score0.01655EPSS
Exploits0References1
CVE
CVE
added 2020/03/19 1:42 p.m.71 views

CVE-2019-12128

CVE-2019-12128 affects ONAP SO (Dublin and prior) with an authorization flaw: by contacting any of ports 30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, or 30271, an attacker gains full access to the corresponding ONAP services without authentication. Documents consistently describe this ...

10CVSS9.3AI score0.01655EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2018/05/14 8:0 p.m.64 views

CVE-2017-12128

CVE-2017-12128 affects Moxa EDR-810, specifically the Server Agent in version 4.1 build 17030317. A crafted TCP packet (0x21) over TCP/4000 can trigger an information-disclosure vulnerability, exposing device data (model, firmware, serial, location, MAC, IP mask, etc.). Public writeups from Talos...

7.5CVSS7AI score0.48138EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2018/05/14 8:0 p.m.30 views

CVE-2017-12128

An exploitable information disclosure vulnerability exists in the Server Agent functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted TCP packet can cause information disclosure. An attacker can send a crafted TCP packet to trigger this vulnerability...

5.3CVSS7AI score0.48138EPSS
Exploits2References1
seebug.org
seebug.org
added 2018/04/16 12:0 a.m.42 views

Moxa EDR-810 Server Agent Information Disclosure Vulnerability(CVE-2017-12128)

Summary An exploitable information disclosure vulnerability exists in the Server Agent functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted TCP packet can cause information disclosure. An attacker can send a crafted TCP packet to trigger this vulnerability. Tested Versions Moxa...

5CVSS0.1AI score0.48138EPSS
Exploits2
CVE
CVE
added 1976/01/01 12:0 a.m.23 views

CVE-2018-12128

This CVE entry is rejected and not used, per the initial description.

7.2AI score
Exploits0
Rows per page
Query Builder