Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7637 matches found

Prion
Prionadded 2013/10/04 11:55 p.m.20 views

Design/Logic Flaw

Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.0.6.16C1 and earlier, do not properly restrict access to configfile.dump, which allow remote attackers to obtain sensitive information user names, passwords, and configurations...

7.8CVSS6.8AI score0.01482EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2013/10/04 11:0 p.m.25 views

CVE-2013-3540

Cross-site request forgery CSRF vulnerability in cgi-bin/admin/usrgrp.cgi in AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models allows remote attackers to hijack the authentication of administrators for requests that add users...

7.9AI score0.01013EPSS
Exploits5References1
CVE
CVEadded 2013/10/04 11:0 p.m.59 views

CVE-2013-3689

CVE-2013-3689 affects Brickcom camera models such as FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E (and possibly others) with firmware 3.0.6.16C1 and earlier. The root cause is an insufficient restriction on access to the file configfile.dump, allowing a remote attacker to retrieve...

7.8CVSS6.5AI score0.01482EPSS
Exploits1References1Affected Software7
Cvelist
Cvelistadded 2013/10/04 11:0 p.m.21 views

CVE-2013-3541

Directory traversal vulnerability in cgi-bin/admin/fileread in AirLive WL2600CAM and possibly other camera models allows remote attackers to read arbitrary files via a .. dot dot in the READ.filePath parameter...

7.5AI score0.08933EPSS
Exploits5References1
Cvelist
Cvelistadded 2013/10/04 11:0 p.m.21 views

CVE-2013-3689

Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.0.6.16C1 and earlier, do not properly restrict access to configfile.dump, which allow remote attackers to obtain sensitive information user names, passwords, and configurations...

6.3AI score0.01482EPSS
Exploits1References1
CVE
CVEadded 2013/10/04 11:0 p.m.50 views

CVE-2013-3540

CVE-2013-3540 affects AirLive IP cameras (e.g., POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD). The vulnerability is a Cross-Site Request Forgery (CSRF) in the CGI endpoint cgi-bin/admin/usrgrp.cgi, enabling remote attackers to hijack administrator authentication to perf...

6.8CVSS7.8AI score0.01013EPSS
Exploits5References1Affected Software6
securityvulns
securityvulnsadded 2013/10/03 12:0 a.m.31 views

Apple iOS 7 iPad2 Face-Time 1.0.2 - Privacy Vulnerability

Title: ====== Apple iOS 7 iPad2 Face-Time 1.0.2 - Privacy Vulnerability Date: ===== 2013-09-25 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1087 Video: http://www.youtube.com/watch?v=7acWAEZpbgs VL-ID: ===== 1087 Common Vulnerability Scoring System:...

6.5AI score
Exploits0
Vulnerability Lab
Vulnerability Labadded 2013/10/02 12:0 a.m.15 views

Apple iOS v7.0.2 5S - Denial of Service Vulnerability (PoC)

Document Title: =============== Apple iOS v7.0.2 5S - Denial of Service Vulnerability PoC References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1106 Video: https://www.youtube.com/watch?v=jf4t0yFoSD8 Release Date: ============= 2013-10-02 Vulnerability Laboratory ID VL-ID:...

7.1AI score
Exploits0
NVD
NVDadded 2013/10/01 7:55 p.m.22 views

CVE-2013-3963

Cross-site request forgery CSRF vulnerability in goform/usermanage in Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WPHD, GXV3500, and possibly other camera models allows remote attackers to hijack the authentication of unspecified...

6.8CVSS7.2AI score0.00965EPSS
Exploits1References1
NVD
NVDadded 2013/10/01 7:55 p.m.15 views

CVE-2013-3962

Cross-site scripting XSS vulnerability in Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WPHD, GXV3500, and possibly other camera models before firmware 1.0.4.44, allows remote attackers to inject arbitrary web script or HTML via the...

4.3CVSS5.9AI score0.00931EPSS
Exploits1References2
NVD
NVDadded 2013/10/01 7:55 p.m.33 views

CVE-2013-3539

Cross-site request forgery CSRF vulnerability in the command/user.cgi in Sony SNC CH140, SNC CH180, SNC CH240, SNC CH280, SNC DH140, SNC DH140T, SNC DH180, SNC DH240, SNC DH240T, SNC DH280, and possibly other camera models allows remote attackers to hijack the authentication of administrators for...

6.8CVSS7.2AI score0.08788EPSS
Exploits3References1
Prion
Prionadded 2013/10/01 7:55 p.m.17 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in cgi-bin/users.cgi in Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.1.0.8 and earlier, allows remote attackers to hijack the authentication of administrators for requests that...

6.8CVSS7.8AI score0.12381EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2013/10/01 7:0 p.m.20 views

CVE-2013-3962

Cross-site scripting XSS vulnerability in Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WPHD, GXV3500, and possibly other camera models before firmware 1.0.4.44, allows remote attackers to inject arbitrary web script or HTML via the...

7.8AI score0.00931EPSS
Exploits1References2
CVE
CVEadded 2013/10/01 7:0 p.m.50 views

CVE-2013-3962

The CVE-2013-3962 issue affects Grandstream GXV-series devices (e.g., GXV3501/3504/3601/3601HD/LL/3611HD/LL/3615W/P/3651FHD/3662HD/3615WP_HD/3500, and possibly others) where an XSS vulnerability exists in the web interface via PATH_INFO. The root cause is untrusted input in the web path allowing ...

4.3CVSS7.5AI score0.00931EPSS
Exploits1References2Affected Software11
Cisco
Ciscoadded 2013/09/30 8:3 p.m.22 views

Cisco Video Surveillance Operations Manager Unauthenticated Access to Camera Video Feeds Vulnerability

A vulnerability in the administrative web interface of the Cisco Video Surveillance Operations Manager could allow an unauthenticated, remote attacker to view camera video feeds. The vulnerability is due to incomplete enforcement of authentication requirements. An attacker could exploit this...

5CVSS6.8AI score0.01284EPSS
Exploits0References1
NVD
NVDadded 2013/09/28 3:40 a.m.35 views

CVE-2013-5161

Passcode Lock in Apple iOS before 7.0.2 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement, and open the Camera app or read the list of all recently opened apps, by leveraging unspecified transition errors...

4.4CVSS5.8AI score0.00293EPSS
Exploits1References2
Prion
Prionadded 2013/09/28 3:40 a.m.21 views

Design/Logic Flaw

Passcode Lock in Apple iOS before 7.0.2 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement, and open the Camera app or read the list of all recently opened apps, by leveraging unspecified transition errors...

4.4CVSS6.2AI score0.00293EPSS
Exploits1References2Affected Software1
Vulnerability Lab
Vulnerability Labadded 2013/09/24 12:0 a.m.18 views

Apple iOS 7 iPad2 Face Time 1.0.2 - Privacy Vulnerability

Document Title: =============== Apple iOS 7 iPad2 Face Time 1.0.2 - Privacy Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1087 Video: http://www.youtube.com/watch?v=7acWAEZpbgs Release Date: ============= 2013-09-24 Vulnerability Laborato...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Labadded 2013/09/24 12:0 a.m.15 views

Apple iOS 7 iPad2 Face Time 1.0.2 - Privacy Vulnerability

Document Title: =============== Apple iOS 7 iPad2 Face Time 1.0.2 - Privacy Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1087 Video: http://www.youtube.com/watch?v=7acWAEZpbgs Release Date: ============= 2013-09-24 Vulnerability Laborato...

Exploits0
Vulnerability Lab
Vulnerability Labadded 2013/09/23 12:0 a.m.31 views

Security Guard CMS QT 4.7.3 - Stack Overflow Vulnerability

Document Title: =============== Security Guard CMS QT 4.7.3 - Stack Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1085 Release Date: ============= 2013-09-23 Vulnerability Laboratory ID VL-ID: ====================================...

7.1AI score
Exploits0
Rows per page
Query Builder