201 matches found
CVE-2021-21954
A command execution vulnerability exists in the wificountrycodeupdate functionality of the homesecurity binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted set of network packets can lead to arbitrary command execution...
CVE-2018-4025
An exploitable denial-of-service vulnerability exists in the XMLGetRawEncJpg Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause an invalid memory dereference, resulting in a device reboot...
CVE-2018-4018
An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware, running on Anker Roav A1 Dashcam version RoavA1SWV1.9. The HTTP server allows for arbitrary firmware binaries to be uploaded which will be flashed upon next reboot. An attacker can send an HTTP PUT request or...
CVE-2018-4026
An exploitable denial-of-service vulnerability exists in the XMLGetScreen Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted set of packets can cause an invalid memory dereference, resulting in a device reboot...
Anker Eufy Homebase 安全漏洞
Anker Eufy Homebase is a wireless home security camera system from Eufy USA. A security vulnerability exists in Anker Eufy Homebase versions prior to 3.3.4.1h, which stems from a vulnerability that allows an attacker in close proximity to a private wireless network to gain unauthorized access to ...
ankerchokolade.dk Cross Site Scripting vulnerability OBB-3263281
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2022-30545
Auth. Reflected Cross-Site Scripting XSS vulnerability in 5 Anker Connect plugin = 1.2.6 on WordPress...
CVE-2022-30545
Auth. Reflected Cross-Site Scripting XSS vulnerability in 5 Anker Connect plugin = 1.2.6 on WordPress...
Cross site scripting
Auth. Reflected Cross-Site Scripting XSS vulnerability in 5 Anker Connect plugin = 1.2.6 on WordPress...
CVE-2022-30545 WordPress 5 Anker Connect plugin <= 1.2.6 - Reflected Cross-Site Scripting (XSS) vulnerability
Auth. Reflected Cross-Site Scripting XSS vulnerability in 5 Anker Connect plugin = 1.2.6 on WordPress...
CVE-2022-30545 WordPress 5 Anker Connect plugin <= 1.2.6 - Reflected Cross-Site Scripting (XSS) vulnerability
Auth. Reflected Cross-Site Scripting XSS vulnerability in 5 Anker Connect plugin = 1.2.6 on WordPress...
CVE-2022-30545
The CVE-2022-30545 entry describes an authenticated reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin 5 Anker Connect, affected versions
WordPress plugin 5 Anker Connect 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...
5 Anker Connect < 1.2.7 - Reflected Cross-Site Scripting
Description The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...
PT-2022-20168 · Anker · Anker Connect Plugin
Name of the Vulnerable Software and Affected Versions: 5 Anker Connect plugin versions 1.2.6 and earlier Description: The issue is an authenticated reflected Cross-Site Scripting XSS vulnerability. This means that an attacker could potentially inject malicious scripts into the website, which woul...
CVE-2022-30545
Auth. Reflected Cross-Site Scripting XSS vulnerability in 5 Anker Connect plugin = 1.2.6 on WordPress...
WordPress 5 Anker Connect plugin <= 1.2.6 - Reflected Cross-Site Scripting (XSS) vulnerability
Reflected Cross-Site Scripting XSS vulnerability discovered by ptsfence Patchstack Alliance in WordPress 5 Anker Connect plugin versions = 1.2.6. Solution Update the WordPress 5 Anker Connect plugin to the latest available version at least 1.2.7...
Vulnerability Spotlight: Vulnerabilities in popular library affect Unix-based devices
Lilith of Cisco Talos discovered these vulnerabilities. Cisco Talos recently discovered a memory corruption vulnerability in the uClibC library that could affect any Unix-based devices that use this library. uClibC and uClibC-ng are lightweight replacements for the popular gLibc library, which is...
uClibC and uClibC-ng libpthread linuxthreads memory corruption vulnerabilities
Talos Vulnerability Report TALOS-2022-1517 uClibC and uClibC-ng libpthread linuxthreads memory corruption vulnerabilities September 22, 2022 CVE Number CVE-2022-29503 SUMMARY A memory corruption vulnerability exists in the libpthread linuxthreads functionality of uClibC 0.9.33.2 and uClibC-ng...
CVE-2022-21806
A use-after-free vulnerability exists in the mipscollector appsrvserver functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to remote code execution. The device is exposed to attacks from the network...