CVE-2025-15355 NetVision Information｜ISOinsight - Reflected Cross-site Scripting

ISOinsight developed by NetVision Information has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks...

CVE-2025-15355

CVE-2025-15355 describes a reflected cross-site scripting vulnerability in ISOinsight (NetVision Information). Unauthenticated remote attackers can lure users via phishing to trigger arbitrary JavaScript execution in the victim’s browser. The Red Hat/CIRCL/NVD entries align on the same descriptio...

PT-2025-53852

Name of the Vulnerable Software and Affected Versions ISOinsight versions affected versions not specified Description ISOinsight, developed by NetVision Information, exhibits a Reflected Cross-site Scripting issue. This allows attackers who do not need to be logged in to execute arbitrary...

EUVD-2025-2020

Malicious code in bioql PyPI...

NetVision Information ISOinsight 安全漏洞

NetVision Information ISOinsight is an operations and maintenance management platform from China Zhengbang Information NetVision Information. A security vulnerability exists in NetVision Information ISOinsight, which stems from a SQL injection vulnerability that could lead to the execution of...

NetVision Information ISOinsight 安全漏洞

NetVision Information ISOinsight is an operations and maintenance management platform from China-based Zhengbang Information NetVision Information. A security vulnerability exists in NetVision Information ISOinsight that stems from a lack of authentication, which could allow an unauthenticated,...

CVE-2025-1145

NetVision Information ISOinsight has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript code in the user's browser through phishing techniques...

CVE-2025-1145 NetVision Information ISOinsight - Reflected Cross-site Scripting

NetVision Information ISOinsight has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript code in the user's browser through phishing techniques...

CVE-2025-1145

CVE-2025-1145 affects NetVision Information ISOinsight. The connected sources describe a reflected Cross-site Scripting vulnerability that allows unauthenticated remote attackers to execute arbitrary JavaScript in a user’s browser, typically via phishing. The impact is user-side script execution ...

CVE-2025-1145 NetVision Information ISOinsight - Reflected Cross-site Scripting

NetVision Information ISOinsight has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript code in the user's browser through phishing techniques...

NetVision Information ISOinsight 跨站脚本漏洞

NetVision Information ISOinsight is an operations and maintenance management platform from China's Zhengbang Information NetVision Information. A cross-site scripting vulnerability exists in NetVision Information ISOinsight. An attacker can exploit this vulnerability to execute arbitrary JavaScri...

CVE-2025-0457 NetVision Information airPASS - OS Command Injection

The airPASS from NetVision Information has an OS Command Injection vulnerability, allowing remote attackers with regular privileges to inject and execute arbitrary OS commands...

CVE-2025-0456 NetVision Information airPASS - Missing Authentication

The airPASS from NetVision Information has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access the specific administrative functionality to retrieve all accounts and passwords...

CVE-2025-0456 NetVision Information airPASS - Missing Authentication

The airPASS from NetVision Information has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access the specific administrative functionality to retrieve all accounts and passwords...

CVE-2025-0455 NetVision Information airPASS - SQL injection

The airPASS from NetVision Information has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

PT-2025-3892 · Netvision Information · Airpass

Name of the Vulnerable Software and Affected Versions: airPASS from NetVision Information affected versions not specified Description: The issue allows unauthenticated remote attackers to access specific administrative functionality, enabling them to retrieve all accounts and passwords. This pose...

PT-2025-3891 · Netvision Information · Airpass

Name of the Vulnerable Software and Affected Versions: airPASS versions affected versions not specified Description: The airPASS from NetVision Information has a SQL Injection issue, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database...

PT-2025-3893 · Netvision Information · Airpass

Name of the Vulnerable Software and Affected Versions: airPASS from NetVision Information affected versions not specified Description: The issue allows remote attackers with regular privileges to inject and execute arbitrary OS commands. This is due to an OS Command Injection vulnerability...