CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

VulnCheck KEV•added 2025/10/13 12:0 a.m.•13 views

VulnCheck KEV: CVE-2024-9643

The Four-Faith F3x36 router using firmware v2.0.0 is vulnerable to authentication bypass due to hard-coded credentials in the administrative web server. An attacker with knowledge of the credentials can gain administrative access via crafted HTTP requests. This issue appears similar to...

9.8CVSS5.8AI score0.53533EPSS

In wildExploits0References183

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2002-1044

Malware in sbrugna...

5CVSS6.4AI score0.01812EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2009-0643

Malware in sbrugna...

5CVSS6.4AI score0.02768EPSS

Exploits1References6

Vulnrichment•added 2025/02/04 2:58 p.m.•11 views

CVE-2024-9644 Four-Faith F3x36 bapply.cgi Auth Bypass

The Four-Faith F3x36 router using firmware v2.0.0 is vulnerable to an authentication bypass vulnerability in the administrative web server. Authentication is not enforced on some administrative functionality when using the "bapply.cgi" endpoint instead of the normal "apply.cgi" endpoint. A remote...

9.8CVSS7.4AI score0.0064EPSS

Exploits0References1

OSV•added 2019/04/24 9:29 p.m.•6 views

CVE-2019-8993

The administrative web server component of TIBCO Software Inc.'s TIBCO ActiveMatrix BPM, TIBCO ActiveMatrix BPM Distribution for TIBCO Silver Fabric, TIBCO ActiveMatrix Policy Director, TIBCO ActiveMatrix Service Bus, TIBCO ActiveMatrix Service Grid, TIBCO ActiveMatrix Service Grid Distribution f...

9.8CVSS7.2AI score0.02531EPSS

Exploits0References3

Prion•added 2019/04/24 9:29 p.m.•17 views

Design/Logic Flaw

5CVSS9.4AI score0.02531EPSS

Exploits0References3Affected Software5

NVD•added 2009/02/20 6:47 a.m.•14 views

CVE-2009-0640

Directory traversal vulnerability in the administrative web server in Swann DVR4-SecuraNet allows remote attackers to read arbitrary files via a .. dot dot in the URI, as demonstrated by reading the vynetman.cfg file that contains passwords...

5CVSS6.7AI score0.02768EPSS

Exploits1References5

Prion•added 2009/02/20 6:47 a.m.•15 views

Directory traversal

5CVSS7.2AI score0.02768EPSS

Exploits1References5

NVD•added 2002/08/12 4:0 a.m.•20 views

CVE-2002-0787

Cross-site scripting vulnerabilities in iCon administrative web server for Critical Path inJoin Directory Server 4.0 allow remote attackers to execute script as the administrator via administrator URLs with modified 1 LOCID or 2 OC parameters...

7.5CVSS6.8AI score0.0288EPSS

Exploits1References3

Cvelist•added 2002/07/26 4:0 a.m.•14 views

CVE-2002-0786

iCon administrative web server for Critical Path inJoin Directory Server 4.0 allows authenticated inJoin administrators to read arbitrary files by specifying the target file in the LOG parameter...

6.5AI score0.03192EPSS

Exploits1References3

Packet Storm•added 2002/05/15 12:0 a.m.•44 views

injoin.txt

Per our policy at http://www.nmrc.org/advise/policy.txt, we are releasing these advisories as these are not high priority and the vendor has a fix that is scheduled to be released soon. In an effort to save bandwidth, both advisories are in this single email. NMRC will see you at DefCon in Las...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by