CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

283 matches found

Cvelist•added 2022/08/16 7:1 a.m.•13 views

CVE-2022-35239

The image file management page of SolarView Compact SV-CPT-MC310 Ver.7.23 and earlier, and SV-CPT-MC310F Ver.7.23 and earlier contains an insufficient verification vulnerability when uploading files. If this vulnerability is exploited, arbitrary PHP code may be executed if a remote authenticated...

8.8AI score0.00816EPSS

Exploits0References3

Positive Technologies•added 2022/08/16 12:0 a.m.•2 views

PT-2022-22647 · Unknown · Solarview Compact Sv-Cpt-Mc310

Name of the Vulnerable Software and Affected Versions: SolarView Compact SV-CPT-MC310 versions 7.23 and earlier SolarView Compact SV-CPT-MC310F versions 7.23 and earlier Description: The image file management page contains an insufficient verification issue when uploading files. This can be...

8.8CVSS8.7AI score0.00816EPSS

Exploits0References5

VulnCheck KEV•added 2022/08/04 12:0 a.m.•1 views

VulnCheck KEV: CVE-2022-29303

SolarView Compact contains a command injection vulnerability due to improper validation of input values on the send test mail console of the product's web server...

10CVSS7.3AI score0.94372EPSS

Exploits6References1

Japan Vulnerability Notes•added 2022/08/03 8:40 a.m.•2 views

CONTEC SolarView Compact vulnerable to insufficient verification in uploading files

Overview SolarView Compact provided by CONTEC CO., LTD. is PV Measurement System. The image file management page of SolarView Compact contains an insufficient verification vulnerability when uploadi webray reported this vulnerability to JPCERT/CC. JPCERT/CC coordinated with the developer.ng files...

8.8CVSS7AI score0.00816EPSS

Exploits0References6

CNNVD•added 2022/07/27 12:0 a.m.•1 views

Contec SolarView Compact 输入验证错误漏洞

Contec SolarView Compact is an application system from Contec Japan. which provides photovoltaic power measurement systems. Contec SolarView Compact suffers from an input validation error vulnerability that stems from insufficient input validation provided in the image file management page. An...

8.8CVSS8.4AI score0.00816EPSS

Exploits0References6

CNVD•added 2022/06/23 12:0 a.m.•46 views

Contec SolarView Compact Remote Code Execution Vulnerability

Contec SolarView Compact is an application from Contec Japan, Inc. Contec SolarView Compact v6.0 contains a remote code execution vulnerability that stems from a failure of SolarImage.php to properly filter special elements of the construction snippet. An attacker could exploit this vulnerability...

9.8CVSS4.8AI score0.01447EPSS

Exploits1References1

CNVD•added 2022/06/23 12:0 a.m.•28 views

Contec SolarView Compact Cross-Site Scripting Vulnerability (CNVD-2022-61892)

Contec SolarView Compact is an application from Contec Japan, Inc. Contec SolarView Compact v6.0 contains a cross-site scripting vulnerability that originates in the component SolarAiConf.php, which lacks a data validation filter for user-supplied data and output. An attacker could exploit this...

6.1CVSS3.1AI score0.0427EPSS

Exploits1References1

NVD•added 2022/06/21 1:15 p.m.•6 views

CVE-2022-31374

An arbitrary file upload vulnerability /images/background/1.php in of SolarView Compact 6.0 allows attackers to execute arbitrary code via a crafted php file...

9.8CVSS0.01447EPSS

Exploits1References1

NVD•added 2022/06/21 1:15 p.m.•14 views

CVE-2022-31373

SolarView Compact v6.0 was discovered to contain a cross-site scripting XSS vulnerability via the component SolarAiConf.php...

6.1CVSS0.0427EPSS

Exploits1References1

OSV•added 2022/06/21 1:15 p.m.•1 views

CVE-2022-31373

SolarView Compact v6.0 was discovered to contain a cross-site scripting XSS vulnerability via the component SolarAiConf.php...

6.1CVSS5.7AI score0.0427EPSS

Exploits1References1

OSV•added 2022/06/21 1:15 p.m.•2 views

CVE-2022-31374

An arbitrary file upload vulnerability /images/background/1.php in of SolarView Compact 6.0 allows attackers to execute arbitrary code via a crafted php file...

9.8CVSS7.6AI score

Exploits0References1

ATTACKERKB•added 2022/06/21 1:15 p.m.•1 views

CVE-2022-31374

An arbitrary file upload vulnerability /images/background/1.php in of SolarView Compact 6.0 allows attackers to execute arbitrary code via a crafted php file...

9.8CVSS7.7AI score0.01447EPSS

Exploits1References2

Prion•added 2022/06/21 1:15 p.m.•13 views

Privilege escalation

An arbitrary file upload vulnerability /images/background/1.php in of SolarView Compact 6.0 allows attackers to execute arbitrary code via a crafted php file...

7.5CVSS9.5AI score0.01447EPSS

Exploits1References1Affected Software1

Prion•added 2022/06/21 1:15 p.m.•14 views

Cross site scripting

SolarView Compact v6.0 was discovered to contain a cross-site scripting XSS vulnerability via the component SolarAiConf.php...

4.3CVSS6AI score0.0427EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/06/21 1:0 p.m.•15 views

CVE-2022-31373

SolarView Compact v6.0 was discovered to contain a cross-site scripting XSS vulnerability via the component SolarAiConf.php...

6.2AI score0.0427EPSS

Exploits1References1

CVE•added 2022/06/21 1:0 p.m.•74 views

CVE-2022-31373

SolarView Compact (v6.0/6.00) contains a cross-site scripting vulnerability in the Solar_AiConf.php component. An attacker can inject script that runs in the victim’s browser, potentially leading to session hijacking or credential theft. Root cause described across sources is insufficient input v...

6.1CVSS6AI score0.0427EPSS

Exploits1References1Affected Software1

CVE•added 2022/06/21 1:0 p.m.•69 views

CVE-2022-31374

CVE-2022-31374 affects Contec SolarView Compact 6.0. The vulnerability is an arbitrary file upload in /images/background/1.php that allows an attacker to execute arbitrary code by submitting a crafted PHP file. Root cause: improper handling/filtration of input in the image handling path leading t...

9.8CVSS9.5AI score0.01447EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/06/21 1:0 p.m.•14 views

CVE-2022-31374

An arbitrary file upload vulnerability /images/background/1.php in of SolarView Compact 6.0 allows attackers to execute arbitrary code via a crafted php file...

9.7AI score0.01447EPSS

Exploits1References1

CNNVD•added 2022/06/21 12:0 a.m.•2 views

Contec SolarView Compact 跨站脚本漏洞

6.1CVSS5.5AI score0.0427EPSS

Exploits1References2

CNNVD•added 2022/06/21 12:0 a.m.•1 views

Contec SolarView Compact 代码问题漏洞

9.8CVSS6.9AI score0.01447EPSS

Exploits1References2

Rows per page