131 matches found
CVE-2019-25250
The CVE covers Devolo dLAN 500 AV Wireless+ (firmware 3.1.0-1) with a cross-site request forgery flaw that allows triggering administrative actions via malicious pages when a logged-in user visits. Root cause stated across sources is lack of proper request validation enabling CSRF to trigger unau...
CVE-2021-47731
Selea Targa IP OCR-ANPR Camera contains a hard-coded developer password vulnerability that allows unauthorized configuration access through an undocumented page. Attackers can exploit the hidden endpoint by using the hard-coded password 'Selea781830' to enable configuration upload and overwrite...
EUVD-2021-34740
Selea Targa IP OCR-ANPR Camera contains a hard-coded developer password vulnerability that allows unauthorized configuration access through an undocumented page. Attackers can exploit the hidden endpoint by using the hard-coded password 'Selea781830' to enable configuration upload and overwrite...
CVE-2021-47731
Selea Targa IP OCR-ANPR Camera contains a hard-coded developer password vulnerability that allows unauthorized configuration access through an undocumented page. Attackers can exploit the hidden endpoint by using the hard-coded password 'Selea781830' to enable configuration upload and overwrite...
CVE-2021-47731 Selea Targa IP Camera Developer Backdoor Configuration Overwrite
Selea Targa IP OCR-ANPR Camera contains a hard-coded developer password vulnerability that allows unauthorized configuration access through an undocumented page. Attackers can exploit the hidden endpoint by using the hard-coded password 'Selea781830' to enable configuration upload and overwrite...
CVE-2021-47731
CVE-2021-47731 affects the Selea Targa IP OCR-ANPR Camera. The vulnerability is a hard-coded developer password that allows unauthorized configuration access via an undocumented endpoint, exploitable with the password Selea781830 to enable configuration upload and overwrite device settings. Docum...
PT-2025-50265
Name of the Vulnerable Software and Affected Versions Selea Targa IP OCR-ANPR Camera affected versions not specified Description The Selea Targa IP OCR-ANPR Camera contains a hard-coded developer password that allows unauthorized configuration access. An attacker can exploit a hidden endpoint usi...
PT-2025-45018
Name of the Vulnerable Software and Affected Versions Radiometrics VizAir affected versions not specified Description Radiometrics VizAir lacks authentication mechanisms for critical functions, including admin access and API requests. This allows attackers to modify configurations without...
CVE-2025-4952 Denial-of-service vulnerability in ESET security products for Windows
Tampering of the registry entries might have led to preventing the ESET security products from starting correctly on the next system startup or to unauthorized changes in the product's configuration...
PT-2025-44622
Name of the Vulnerable Software and Affected Versions ESET security products for Windows affected versions not specified Description Tampering with registry entries could prevent ESET security products from starting correctly upon the next system startup or result in unauthorized changes to the...
EUVD-2016-8839
Malware in sbrugna...
EUVD-2019-15021
Malware in sbrugna...
EUVD-2024-54880
Malicious code in bioql PyPI...
Rockwell Automation Stratix IOS
RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to run malicious configurations without authentication. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize...
Ivanti多款产品 安全漏洞
Ivanti Connect Secure ICS and others are products of Ivanti Corporation, U.S.A. Ivanti Connect Secure is a secure remote network connection tool.Ivanti Policy Secure IPS is a network access control NAC solution.Ivanti Neurons is Ivanti Neurons is a groundbreaking platform that simplifies and...
CVE-2024-53946
The KuWFi 4G LTE AC900 router 1.0.13 is vulnerable to Cross-Site Request Forgery CSRF on its web management interface. This vulnerability allows an attacker to trick an authenticated admin user into performing unauthorized actions, such as exploiting a command injection vulnerability in...
KuWFi 4G LTE AC900 安全漏洞
KuWFi 4G LTE AC900 is a WiFi router from KuWFi China. A security vulnerability exists in the KuWFi 4G LTE AC900 version 1.0.13, which originates from a cross-site request forgery in the web management interface that could lead to unauthorized configuration changes...
PT-2025-33279 · Kuwfi · Kuwfi 4G Ac900 Lte Router
Name of the Vulnerable Software and Affected Versions: KuWFi 4G LTE AC900 router version 1.0.13 Description: The KuWFi 4G LTE AC900 router is susceptible to Cross-Site Request Forgery CSRF on its web management interface. An attacker can deceive an authenticated administrator into performing...
Vulnerabilities fixed in IBM QRadar SIEM
IBM has fixed vulnerabilities in IBM QRadar SIEM Specific to version 7.5.0 Update Package 12. The vulnerabilities include an ability for an authorized user to modify critical configuration files, which could lead to uploading malicious autoupdate files and executing arbitrary commands within the...
CVE-2023-20048
A vulnerability in the web services interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to execute certain unauthorized configuration commands on a Firepower Threat Defense FTD device that is managed by the FMC Software. This vulnerability is...