CVE-2019-25322 Heatmiser Netmonitor 3.03 - Hardcoded Credentials

Heatmiser Netmonitor 3.03 contains a hardcoded credentials vulnerability in the networkSetup.htm page with predictable admin login credentials. Attackers can access the device by using the hard-coded username 'admin' and password 'admin' in the hidden form input fields...

EUVD-2025-25322

Malicious code in bioql PyPI...

CVE-2022-25322

ZEROF Web Server 2.0 allows /HandleEvent SQL Injection...

VulnCheck KEV: CVE-2022-25322

ZEROF Web Server 2.0 allows /HandleEvent SQL Injection...

ZEROF Web Server SQL Injection (CVE-2022-25322)

An SQL injection vulnerability exists in ZEROF Web Server. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

CVE-2022-25322

creationtimestamp| type| source ---|---|--- 2022-02-18 20:40:14+00:00| seen| https://t.me/cibsecurity/37716 2025-01-06 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-01-06 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities -...

CVE-2022-25322

ZEROF Web Server 2.0 allows /HandleEvent SQL Injection...

CVE-2022-25322

ZEROF Web Server 2.0 allows /HandleEvent SQL Injection...

CVE-2022-25322

CVE-2022-25322 affects ZEROF Web Server 2.0, where the endpoint /HandleEvent is vulnerable to SQL Injection . The NVD/NVD-derived metrics list CVSS v3.1 base score 9.8 (CRITICAL) and CVSS v2 base 7.5 (HIGH);攻击面 is NETWORK with low complexity and no authentication. Connected sources describe explo...

Exploit for SQL Injection in Zerof Web_Server

Public CVE | CVE Number | Produc...

CVE-2021-25322

A UNIX Symbolic Link Symlink Following vulnerability in python-HyperKitty of openSUSE Leap 15.2, Factory allows local attackers to escalate privileges from the user hyperkitty or hyperkitty-admin to root. This issue affects: openSUSE Leap 15.2 python-HyperKitty version 1.3.2-lp152.2.3.1 and prior...

CVE-2021-25322

CVE-2021-25322 affects openSUSE Leap 15.2 and openSUSE Factory: python-HyperKitty, with a UNIX Symlink Following issue that could allow local privilege escalation from hyperkitty/hyperkitty-admin to root. Connected OSV data confirms a fix in HyperKitty web package: HyperKitty-web-1.3.4-5.2, indic...

CVE-2021-25322 python-HyperKitty: hyperkitty-permissions.sh used during %post allows local privilege escalation from hyperkitty user to root

A UNIX Symbolic Link Symlink Following vulnerability in python-HyperKitty of openSUSE Leap 15.2, Factory allows local attackers to escalate privileges from the user hyperkitty or hyperkitty-admin to root. This issue affects: openSUSE Leap 15.2 python-HyperKitty version 1.3.2-lp152.2.3.1 and prior...