Lucene search
+L

104 matches found

CNNVD
CNNVD
added 2023/06/27 12:0 a.m.5 views

MicroWorld Technologies eScan Management Console 跨站脚本漏洞

MicroWorld Technologies eScan Management Console is an eScan management console from MicroWorld Technologies, Inc. A cross-site scripting vulnerability exists in Microworld Technologies eScan Management console version v.14.0.1400.2281, which originates from a vulnerability that allows remote...

5.4CVSS5.9AI score0.00762EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/06/27 12:0 a.m.6 views

MicroWorld Technologies eScan Management Console 跨站脚本漏洞

The MicroWorld Technologies eScan Management Console is an eScan management console from MicroWorld Technologies, Inc. A cross-site scripting vulnerability exists in Microworld Technologies eScan Management console version v.14.0.1400.2281, which originates from a vulnerability that allows a remo...

5.4CVSS6AI score0.00813EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/06/02 12:15 p.m.11 views

CVE-2023-33731

Reflected Cross Site Scripting XSS in the view dashboard detail feature in Microworld Technologies eScan management console 14.0.1400.2281 allows remote attacker to inject arbitrary code via the URL directly...

6.1CVSS6.6AI score0.00808EPSS
Exploits2References3
OSV
OSV
added 2023/05/31 8:15 p.m.5 views

CVE-2023-33732

Cross Site Scripting XSS in the New Policy form in Microworld Technologies eScan management console 14.0.1400.2281 allows a remote attacker to inject arbitrary code via the vulnerable parameters type, txtPolicyType, and Deletefileval...

6.1CVSS6AI score0.02123EPSS
Exploits6References1
ATTACKERKB
ATTACKERKB
added 2023/05/31 8:15 p.m.5 views

CVE-2023-33732

Cross Site Scripting XSS in the New Policy form in Microworld Technologies eScan management console 14.0.1400.2281 allows a remote attacker to inject arbitrary code via the vulnerable parameters type, txtPolicyType, and Deletefileval...

7.8CVSS7.1AI score0.02123EPSS
Exploits6References2
CNNVD
CNNVD
added 2023/05/31 12:0 a.m.7 views

Microworld Technologies eScan Management Console 安全漏洞

MicroWorld Technologies eScan Management Console is an electronic scanning management console from MicroWorld Technologies, Inc. A security vulnerability exists in Microworld Technologies eScan Management Console version 14.0.1400.2281, which originates in the GetUserCurrentPwd function that allo...

9.8CVSS8.4AI score0.01175EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2023/05/31 12:0 a.m.5 views

PT-2023-24461 · Microworld Technologies · Escan

Name of the Vulnerable Software and Affected Versions: Microworld Technologies eScan management console version 14.0.1400.2281 Description: The issue allows a remote attacker to inject arbitrary code via the vulnerable parameters type, txtPolicyType, and Deletefileval in the New Policy form. This...

7.8CVSS8.2AI score0.02123EPSS
Exploits6References4
ATTACKERKB
ATTACKERKB
added 2023/05/17 1:15 p.m.5 views

CVE-2023-31703

Cross Site Scripting XSS in the edit user form in Microworld Technologies eScan management console 14.0.1400.2281 allows remote attacker to inject arbitrary code via the from parameter...

9CVSS6AI score0.04475EPSS
Exploits4References3
ATTACKERKB
ATTACKERKB
added 2023/05/17 1:15 p.m.4 views

CVE-2023-31702

SQL injection in the View User Profile in MicroWorld eScan Management Console 14.0.1400.2281 allows remote attacker to dump entire database and gain windows XP command shell to perform code execution on database server via GetUserCurrentPwd?UsrId=1...

7.2CVSS6.3AI score0.04312EPSS
Exploits5References3
NVD
NVD
added 2023/05/17 1:15 p.m.47 views

CVE-2023-31702

SQL injection in the View User Profile in MicroWorld eScan Management Console 14.0.1400.2281 allows remote attacker to dump entire database and gain windows XP command shell to perform code execution on database server via GetUserCurrentPwd?UsrId=1...

7.2CVSS7.8AI score0.04312EPSS
Exploits5References2
OSV
OSV
added 2023/05/17 1:15 p.m.12 views

CVE-2023-31702

SQL injection in the View User Profile in MicroWorld eScan Management Console 14.0.1400.2281 allows remote attacker to dump entire database and gain windows XP command shell to perform code execution on database server via GetUserCurrentPwd?UsrId=1...

7.2CVSS7.5AI score0.04312EPSS
Exploits5References2
CNNVD
CNNVD
added 2023/05/17 12:0 a.m.5 views

MicroWorld eScan Management Console 跨站脚本漏洞

MicroWorld eScan Management Console is a control panel from MicroWorld Japan. It helps system administrators remotely manage all eScan client computers on a network. A security vulnerability exists in MicroWorld eScan Management Console version 14.0.1400.2281, which originates from the presence o...

9CVSS8.3AI score0.04475EPSS
Exploits4References4
Vulnrichment
Vulnrichment
added 2023/05/17 12:0 a.m.8 views

CVE-2023-31702

SQL injection in the View User Profile in MicroWorld eScan Management Console 14.0.1400.2281 allows remote attacker to dump entire database and gain windows XP command shell to perform code execution on database server via GetUserCurrentPwd?UsrId=1...

7.8AI score0.04312EPSS
Exploits5References2
CVE
CVE
added 2023/05/17 12:0 a.m.54 views

CVE-2023-31702

The CVE-2023-31702 vulnerability affects MicroWorld eScan Management Console 14.0.1400.2281. It is a SQL injection in the GetUserCurrentPwd?UsrId=1 endpoint used in the View User Profile, enabling an authenticated attacker to dump the entire database and potentially execute OS commands on the bac...

7.2CVSS7.7AI score0.04312EPSS
Exploits5References2Affected Software1
Cvelist
Cvelist
added 2023/05/17 12:0 a.m.47 views

CVE-2023-31702

SQL injection in the View User Profile in MicroWorld eScan Management Console 14.0.1400.2281 allows remote attacker to dump entire database and gain windows XP command shell to perform code execution on database server via GetUserCurrentPwd?UsrId=1...

8AI score0.04312EPSS
Exploits5References2
Positive Technologies
Positive Technologies
added 2023/05/17 12:0 a.m.9 views

PT-2023-23422 · Microworld · Microworld Escan Management Console

Name of the Vulnerable Software and Affected Versions: MicroWorld eScan Management Console version 14.0.1400.2281 Description: The issue allows a remote attacker to perform SQL injection in the View User Profile feature, enabling them to dump the entire database and gain a Windows XP command shel...

7.2CVSS8.8AI score0.04312EPSS
Exploits5References9
CNNVD
CNNVD
added 2022/04/01 12:0 a.m.5 views

MicroWorld Technologies eScan Anti-Virus 输入验证错误漏洞

MicroWorld Technologies eScan Anti-Virus is an Internet security solution from MicroWorld Technologies, USA. It provides virus protection for enterprise and home SOHO users. The MicroWorld Technologies eScan Anti-Virus is prone to an input validation error vulnerability that originates from inval...

10CVSS8.2AI score0.02267EPSS
Exploits0References2
Prion
Prion
added 2018/07/13 5:29 p.m.15 views

Cross site request forgery (csrf)

In MicroWorld eScan Internet Security Suite ISS for Business 14.0.1400.2029, the driver econceal.sys allows a non-privileged user to send a 0x830020E0 IOCTL request to \.\econceal to cause a denial of service BSOD...

4.9CVSS5.4AI score0.00288EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2018/07/13 5:29 p.m.16 views

CVE-2018-10098

In MicroWorld eScan Internet Security Suite ISS for Business 14.0.1400.2029, the driver econceal.sys allows a non-privileged user to send a 0x830020E0 IOCTL request to \.\econceal to cause a denial of service BSOD...

5.5CVSS5.5AI score0.00288EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/07/13 5:0 p.m.21 views

CVE-2018-10098

In MicroWorld eScan Internet Security Suite ISS for Business 14.0.1400.2029, the driver econceal.sys allows a non-privileged user to send a 0x830020E0 IOCTL request to \.\econceal to cause a denial of service BSOD...

5.5AI score0.00288EPSS
Exploits1References1
Rows per page
Query Builder