1021 matches found
EUVD-2025-203852
A vulnerability in the web interface of the Güralp Fortimus Series, Minimus Series and Certimus Series allows an unauthenticated attacker with network access to send specially-crafted HTTP requests that can cause the web service process to deliberately restart. Although this mechanism limits the...
FreePBX SQL Injection Vulnerability (CNVD-2025-3038208)
FreePBX formerly known as Asterisk Management Portal is a set of tools from the FreePBX project for configuring Asterisk IP telephony system through a GUI web-based graphical interface. FreePBX suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered S...
EUVD-2025-201542
A vulnerability has been found in TOZED ZLT M30S and ZLT M30S PRO 1.47/3.09.06. Affected is an unknown function of the component Web Interface. Such manipulation leads to hard-coded credentials. The attack needs to be initiated within the local network. The exploit has been disclosed to the publi...
CVE-2025-14126 TOZED ZLT M30S/ZLT M30S PRO Web hard-coded credentials
A vulnerability has been found in TOZED ZLT M30S and ZLT M30S PRO 1.47/3.09.06. Affected is an unknown function of the component Web Interface. Such manipulation leads to hard-coded credentials. The attack needs to be initiated within the local network. The exploit has been disclosed to the publi...
PT-2025-49313
Name of the Vulnerable Software and Affected Versions TOZED ZLT M30S and ZLT M30S PRO versions 1.47/3.09.06 Description A flaw exists in the Web Interface component of TOZED ZLT M30S and ZLT M30S PRO. The issue is related to the manipulation of the goformId argument with the input REBOOT DEVICE...
CVE-2025-20355 Cisco Catalyst Center Software HTTP Open Redirect Vulnerability
A vulnerability in the web-based management interface of Cisco Catalyst Center Virtual Appliance could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability is due to improper input validation of HTTP request parameters. An attacker could exploit...
PT-2025-46853
Name of the Vulnerable Software and Affected Versions Cisco Catalyst Center affected versions not specified Description A flaw exists in the REST API of Cisco Catalyst Center that could allow a remote attacker with valid credentials at least Observer role to execute arbitrary commands within a...
EUVD-2025-37882
Multiple vulnerabilities in the web-based management interface of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to conduct a reflected XSS attack against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...
CVE-2025-63422
Incorrect access control in the Web management interface in Each Italy Wireless Mini Router WIRELESS-N 300M v28K.MiniRouter.20190211 allows attackers to arbitrarily change the administrator username and password via sending a crafted GET request...
HPE Aruba Networking EdgeConnect OS 安全漏洞
HPE Aruba Networking EdgeConnect OS is an operating system from HPE America. A security vulnerability exists in HPE Aruba Networking EdgeConnect OS that stems from an arbitrary file write vulnerability in the web-based management interface, which could lead to the upload of arbitrary files and...
EUVD-2014-9549
Malware in sbrugna...
EUVD-2009-1331
Malware in sbrugna...
EUVD-2020-24419
Malware in sbrugna...
EUVD-2019-3755
Malware in sbrugna...
EUVD-2018-7283
Malware in sbrugna...
EUVD-2021-10780
Malware in sbrugna...
EUVD-2017-15690
Malware in sbrugna...
EUVD-2017-13005
Malware in sbrugna...
EUVD-2017-6553
Malware in sbrugna...
EUVD-2018-11926
Malware in sbrugna...