Lucene search
K

9 matches found

Nuclei
Nuclei
added 7 hours ago7 views

Karel IP Phone IP1211 Web Management Panel - Local File Inclusion

Karel IP Phone IP1211 Web Management Panel is vulnerable to local file inclusion and can allow remote attackers to access arbitrary files stored on the remote device via the 'cgiServer.exx' endpoint and the 'page' parameter. id: CVE-2025-34023 info: name: Karel IP Phone IP1211 Web Management Pane...

8.5CVSS6AI score0.01409EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-18777

Malicious code in bioql PyPI...

8.5CVSS6.6AI score0.01409EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/06/23 8:39 a.m.5 views

CVE-2025-34023

A path traversal vulnerability exists in the Karel IP1211 IP Phone's web management panel. The /cgi-bin/cgiServer.exx endpoint fails to properly sanitize user input to the page parameter, allowing remote authenticated attackers to access arbitrary files on the underlying system by using crafted...

8.5CVSS6.8AI score0.01409EPSS
Exploits0References1
NVD
NVD
added 2025/06/20 7:15 p.m.10 views

CVE-2025-34023

A path traversal vulnerability exists in the Karel IP1211 IP Phone's web management panel. The /cgi-bin/cgiServer.exx endpoint fails to properly sanitize user input to the page parameter, allowing remote authenticated attackers to access arbitrary files on the underlying system by using crafted...

8.5CVSS0.01409EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/06/20 6:37 p.m.8 views

CVE-2025-34023 Karel IP Phone IP1211 Path Traversal

A path traversal vulnerability exists in the Karel IP1211 IP Phone's web management panel. The /cgi-bin/cgiServer.exx endpoint fails to properly sanitize user input to the page parameter, allowing remote authenticated attackers to access arbitrary files on the underlying system by using crafted...

8.5CVSS0.01409EPSS
Exploits0References4
CVE
CVE
added 2025/06/20 6:37 p.m.20 views

CVE-2025-34023

CVE-2025-34023 affects the Karel IP1211 IP Phone, specifically the web management panel. The vulnerability is a path traversal in the "/cgi-bin/cgiServer.exx" endpoint where the page parameter is not sanitized, allowing remote authenticated attackers to access arbitrary files on the device. Explo...

8.5CVSS6.4AI score0.01409EPSS
In wildExploits0References4
CNNVD
CNNVD
added 2025/06/20 12:0 a.m.2 views

Karel IP1211 IP Phone 安全漏洞

Karel IP1211 IP Phone is an IP phone from Karel, Turkey. A security vulnerability exists in the Karel IP1211 IP Phone that originates from the /cgi-bin/cgiServer.exx endpoint that does not clean up page parameters, which could lead to a path traversal attack...

8.5CVSS6.5AI score0.01409EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/06/20 12:0 a.m.6 views

PT-2025-26459 · Karel · Karel Ip1211 Ip Phone

Name of the Vulnerable Software and Affected Versions: Karel IP1211 IP Phone affected versions not specified Description: A path traversal issue exists in the web management panel, specifically affecting the "/cgi-bin/cgiServer.exx" endpoint. This endpoint fails to properly sanitize user input to...

8.5CVSS6.1AI score0.01409EPSS
Exploits0References9
Packet Storm
Packet Storm
added 2020/10/07 12:0 a.m.563 views

Karel IP Phone IP1211 Web Management Panel Directory Traversal

Exploit Title: Karel IP Phone IP1211 Web Management Panel - Directory Traversal Exploit Author: Berat Gokberk ISLER Date: 2020-09-01 CVE: N/A Type: Webapps Vendor Homepage: https://www.karel.com.tr/urun-cozum/ip1211-ip-telefon Version: IP1211 Details Directory traversal vulnerability on the Karel...

0.1AI score
Exploits0
Rows per page
Query Builder