6 matches found
CVE-2018-15819
creationtimestamp| type| source ---|---|--- 2020-03-02 22:53:14+00:00| seen| https://t.me/cibsecurity/10233...
CVE-2018-15819
EasyIO EasyIO-30P devices before 2.0.5.27 have Incorrect Access Control, related to webuser.js...
CVE-2018-15819
EasyIO EasyIO-30P devices before 2.0.5.27 have Incorrect Access Control, related to webuser.js...
CVE-2018-15819
CVE-2018-15819 affects EasyIO-30P controllers (versions before 2.0.5.27). The vulnerability arises from Incorrect Access Control in the web interface (webuser.js), enabling authentication bypass. Connected sources also note associated cross‑site scripting issues (CVE-2018-15820) and remote exploi...
EasyIO 30P Authentication Bypass / Cross Site Scripting Vulnerabilities
EasyIO 30P versions prior to 2.0.5.27 suffer from authentication bypass and cross site scripting vulnerabilities. EasyIO 30P Authentication Bypass / Cross Site Scripting Vulnerabilities INFORMATION Product: EasyIO 30P http://www.easyio.com Affected versions: 2.0.5.27 tested on version 2.0.5.16 CV...
EasyIO 30P Authentication Bypass / Cross Site Scripting
INFORMATION Product: EasyIO 30P http://www.easyio.com Affected versions: 2.0.5.27 tested on version 2.0.5.16 CVE IDs: CVE-2018-15820 Stored XSS and CVE-2018-15819 Authentication bypass Remote-exploit: yes TIMELINE Vendor notification: 3rd August, 2018 Vendor acknowledgment: 22nd August, 2018 Patc...