EUVD-2024-32348

Malicious code in bioql PyPI...

CVE-2023-48383

NetVision Information airPASS has a path traversal vulnerability within its parameter in a specific URL. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and download arbitrary system files...

CVE-2025-0456

The CVE-2025-0456 issue concerns the airPASS product from NetVision Information. The root cause is a Missing Authentication vulnerability that allows unauthenticated remote attackers to access an administrative function and retrieve all accounts and passwords. The connected sources provide high-s...

CVE-2025-0455 NetVision Information airPASS - SQL injection

The airPASS from NetVision Information has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

CVE-2025-0455

The CVE-2025-0455 entry concerns NetVision Information’s airPASS. A SQL injection vulnerability in airPASS allows unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents. Documents provide explicit details on affected software (airPASS), vul...

NetVision Information airPASS 操作系统命令注入漏洞

NetVision Information airPASS is an application from China-based NetVision Information. NetVision Information airPASS suffers from an operating system command injection vulnerability that stems from vulnerability to operating system command injection attacks, which could allow a remote attacker...

NetVision Information airPASS SQL注入漏洞

NetVision Information airPASS is an application from China-based NetVision Information. NetVision Information airPASS suffers from a SQL injection vulnerability that originates from a susceptibility to SQL injection attacks, which allows an unauthenticated, remote attacker to inject arbitrary SQL...

CVE-2024-3776

The parameter used in the login page of Netvision airPASS is not properly filtered for user input. An unauthenticated remote attacker can insert JavaScript code to the parameter for Reflected Cross-site scripting attacks...

CVE-2024-3776

The parameter used in the login page of Netvision airPASS is not properly filtered for user input. An unauthenticated remote attacker can insert JavaScript code to the parameter for Reflected Cross-site scripting attacks...

CVE-2024-3776 Netvision airPASS - Reflected XSS

The parameter used in the login page of Netvision airPASS is not properly filtered for user input. An unauthenticated remote attacker can insert JavaScript code to the parameter for Reflected Cross-site scripting attacks...

CVE-2024-3776 Netvision airPASS - Reflected XSS

The parameter used in the login page of Netvision airPASS is not properly filtered for user input. An unauthenticated remote attacker can insert JavaScript code to the parameter for Reflected Cross-site scripting attacks...

CVE-2024-3776

CVE-2024-3776 is a reflected XSS vulnerability in Netvision airPASS login parameter handling. An unauthenticated attacker can inject JavaScript via the login parameter due to insufficient input filtering. Documented impact is cross-site scripting with potential access to user context; exploitatio...

NETVISION INFORMATION airPASS 跨站脚本漏洞

NETVISION INFORMATION airPASS is a wireless network authentication management system from NETVISION INFORMATION. A cross-site scripting vulnerability exists in versions prior to NETVISION INFORMATION airPASS v2.9.0.20231006, which stems from a Reflected Cross-Site Scripting XSS vulnerability in t...

PT-2024-27733 · Netvision · Netvision Airpass

Name of the Vulnerable Software and Affected Versions: Netvision airPASS affected versions not specified Description: The issue concerns a reflected cross-site scripting attack. An unauthenticated remote attacker can insert JavaScript code into a parameter used in the login page, as it is not...