Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

49 matches found

Prion
Prionadded 2022/09/28 2:15 p.m.14 views

Input validation

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function...

5.8CVSS7.2AI score0.0097EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichmentadded 2022/09/28 1:45 p.m.8 views

CVE-2022-22525 Command injection in restore function of Carlo Gavazzi UWP3.0 allows for command injection

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function...

7.2CVSS7.3AI score0.0097EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2020/12/11 12:0 a.m.3 views

PT-2020-13067 · Silver Peak · Orchestrator +1

Name of the Vulnerable Software and Affected Versions: Silver Peak Unity ECOSTM ECOS appliance software versions prior to 8.1.9.15, 8.3.0.8, 8.3.1.2, 8.3.2.0, 9.0.2.0, and 9.1.0.0 Description: The configuration backup/restore function in the software directly incorporates the user-controlled conf...

8.5CVSS6.8AI score0.01311EPSS
Exploits0References16
Veracode
Veracodeadded 2018/08/29 4:17 a.m.20 views

SQL Injection

phpMyFAQ/phpMyFAQ is vulnerable to SQL Injections. The library does not properly escape parameters in the SQL query executed by the restore function, allowing malicious users to inject and execute arbitrary SQL queries...

7.2CVSS7.5AI score0.02088EPSS
Exploits0References3Affected Software2
Prion
Prionadded 2018/08/28 5:29 p.m.20 views

Sql injection

SQL injection vulnerability in phpMyFAQ before 2.8.13 allows remote authenticated users with certain permissions to execute arbitrary SQL commands via vectors involving the restore function...

6.5CVSS8.5AI score0.02088EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2018/05/31 3:29 p.m.15 views

CVE-2018-11220

Bitmain Antminer D3, L3+, and S9 devices allow Remote Command Execution via the system restore function...

9CVSS9AI score0.16409EPSS
Exploits6References1
myhack58
myhack58added 2010/10/10 12:0 a.m.8 views

Resistant product image management system Access version of Cookie spoofing vulnerability-vulnerability warning-the black bar safety net

About a year ago I discovered the resistance to the product image management system Access version of a Cookie spoofing vulnerability: any user can modify the Cookie to get administrator privileges. This year 6 month, I give resistance to product technology sent a message to inform this...

0.3AI score
Exploits0
CVE
CVEadded 2002/03/09 5:0 a.m.53 views

CVE-1999-1122

CVE-1999-1122 affects SunOS 4.0.3 and earlier, via a vulnerability in the restore component that enables local privilege escalation for local users. The connected PT-1989-1000 entry confirms the affected SunOS versions and notes that, at present, there is no information about a fix in newer versi...

4.6CVSS7.3AI score0.00368EPSS
Exploits0References4Affected Software1
NVD
NVDadded 1989/07/26 4:0 a.m.9 views

CVE-1999-1122

Vulnerability in restore in SunOS 4.0.3 and earlier allows local users to gain privileges...

4.6CVSS0.00368EPSS
Exploits0References4
Rows per page
Query Builder