16 matches found
EUVD-2019-15558
Malware in sbrugna...
CVE-2019-5990
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allow remote attackers to obtain a login password via HTTP referer...
Open redirect
Open redirect vulnerability in Access analysis CGI An-Analyzer released in 2023 December 31 and earlier allows a remote unauthenticated attacker to redirect users to arbitrary websites and conduct phishing attacks via a specially crafted URL...
CVE-2024-22113
Open redirect vulnerability in Access analysis CGI An-Analyzer released in 2023 December 31 and earlier allows a remote unauthenticated attacker to redirect users to arbitrary websites and conduct phishing attacks via a specially crafted URL...
CVE-2024-22113
CVE-2024-22113 affects Access analysis CGI An-Analyzer from ANGLERSNET Co., Ltd. The vulnerability is an open redirect (CWE-601) in the CGI component, allowing remote unauthenticated attackers to redirect users to arbitrary websites via a specially crafted URL, enabling phishing scenarios. Root c...
PT-2024-19214 · Unknown · Access Analysis Cgi An-Analyzer
Name of the Vulnerable Software and Affected Versions: Access analysis CGI An-Analyzer versions prior to 2023 December 31 Description: The issue allows a remote unauthenticated attacker to redirect users to arbitrary websites and conduct phishing attacks via a specially crafted URL...
CVE-2019-5990
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allow remote attackers to obtain a login password via HTTP referer...
CVE-2019-5987
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote authenticated attackers to execute arbitrary OS commands via the Management Page...
CVE-2019-5988
Stored cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote attackers to inject arbitrary web script or HTML via the Management Page...
Design/Logic Flaw
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allow remote attackers to obtain a login password via HTTP referer...
Command injection
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote authenticated attackers to execute arbitrary OS commands via the Management Page...
CVE-2019-5990
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allow remote attackers to obtain a login password via HTTP referer...
CVE-2019-5989
The CVE-2019-5989 issue is a DOM-based cross-site scripting vulnerability in the Analysis Object Page of Access analysis CGI An-Analyzer (released around 2019-06-24). The root cause is DOM-based XSS that could allow a remote attacker to inject arbitrary web script or HTML via the Analysis Object ...
CVE-2019-5988
CVE-2019-5988 affects Access analysis CGI An-Analyzer (ANGLERSNET) and is a stored cross-site scripting vulnerability in the Management Page. The applicable issue is in the Management Page where user-supplied input can be stored and later rendered, enabling an attacker to inject arbitrary web scr...
CVE-2019-5987
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote authenticated attackers to execute arbitrary OS commands via the Management Page...
CVE-2019-5987
This CVE concerns the Access analysis CGI An-Analyzer product. The issue is OS command injection in the Management Page (CVE-2019-5987) that can be triggered by a remote attacker with authentication to the product, allowing execution of arbitrary OS commands. Affected component: the Management Pa...