CVE-2025-1145 NetVision Information ISOinsight - Reflected Cross-site Scripting

NetVision Information ISOinsight has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript code in the user's browser through phishing techniques...

CVE-2025-1145 NetVision Information ISOinsight - Reflected Cross-site Scripting

NetVision Information ISOinsight has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript code in the user's browser through phishing techniques...

CVE-2025-1145

CVE-2025-1145 affects NetVision Information ISOinsight. The connected sources describe a reflected Cross-site Scripting vulnerability that allows unauthenticated remote attackers to execute arbitrary JavaScript in a user’s browser, typically via phishing. The impact is user-side script execution ...

NetVision Information ISOinsight 跨站脚本漏洞

NetVision Information ISOinsight is an operations and maintenance management platform from China's Zhengbang Information NetVision Information. A cross-site scripting vulnerability exists in NetVision Information ISOinsight. An attacker can exploit this vulnerability to execute arbitrary JavaScri...

CVE-2025-0457 NetVision Information airPASS - OS Command Injection

The airPASS from NetVision Information has an OS Command Injection vulnerability, allowing remote attackers with regular privileges to inject and execute arbitrary OS commands...

CVE-2025-0456 NetVision Information airPASS - Missing Authentication

The airPASS from NetVision Information has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access the specific administrative functionality to retrieve all accounts and passwords...

CVE-2025-0456 NetVision Information airPASS - Missing Authentication

The airPASS from NetVision Information has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access the specific administrative functionality to retrieve all accounts and passwords...

CVE-2025-0456

The CVE-2025-0456 issue concerns the airPASS product from NetVision Information. The root cause is a Missing Authentication vulnerability that allows unauthenticated remote attackers to access an administrative function and retrieve all accounts and passwords. The connected sources provide high-s...

CVE-2025-0455 NetVision Information airPASS - SQL injection

The airPASS from NetVision Information has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

CVE-2025-0455 NetVision Information airPASS - SQL injection

The airPASS from NetVision Information has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

CVE-2025-0455

The CVE-2025-0455 entry concerns NetVision Information’s airPASS. A SQL injection vulnerability in airPASS allows unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents. Documents provide explicit details on affected software (airPASS), vul...

NetVision Information airPASS 访问控制错误漏洞

NetVision Information airPASS is an application from China's Zhengbang Information NetVision Information. An access control error vulnerability exists in NetVision Information airPASS that stems from a lack of authentication vulnerability that could allow an unauthenticated, remote attacker to...

NetVision Information airPASS SQL注入漏洞

NetVision Information airPASS is an application from China-based NetVision Information. NetVision Information airPASS suffers from a SQL injection vulnerability that originates from a susceptibility to SQL injection attacks, which allows an unauthenticated, remote attacker to inject arbitrary SQL...

NetVision Information airPASS 操作系统命令注入漏洞

NetVision Information airPASS is an application from China-based NetVision Information. NetVision Information airPASS suffers from an operating system command injection vulnerability that stems from vulnerability to operating system command injection attacks, which could allow a remote attacker...

PT-2025-3892 · Netvision Information · Airpass

Name of the Vulnerable Software and Affected Versions: airPASS from NetVision Information affected versions not specified Description: The issue allows unauthenticated remote attackers to access specific administrative functionality, enabling them to retrieve all accounts and passwords. This pose...

PT-2025-3891 · Netvision Information · Airpass

Name of the Vulnerable Software and Affected Versions: airPASS versions affected versions not specified Description: The airPASS from NetVision Information has a SQL Injection issue, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database...

PT-2025-3893 · Netvision Information · Airpass

Name of the Vulnerable Software and Affected Versions: airPASS from NetVision Information affected versions not specified Description: The issue allows remote attackers with regular privileges to inject and execute arbitrary OS commands. This is due to an OS Command Injection vulnerability...

CVE-2024-3776

The parameter used in the login page of Netvision airPASS is not properly filtered for user input. An unauthenticated remote attacker can insert JavaScript code to the parameter for Reflected Cross-site scripting attacks...

CVE-2024-3776

The parameter used in the login page of Netvision airPASS is not properly filtered for user input. An unauthenticated remote attacker can insert JavaScript code to the parameter for Reflected Cross-site scripting attacks...

CVE-2024-3776 Netvision airPASS - Reflected XSS

The parameter used in the login page of Netvision airPASS is not properly filtered for user input. An unauthenticated remote attacker can insert JavaScript code to the parameter for Reflected Cross-site scripting attacks...