29 matches found
EUVD-2007-4909
Malware in sbrugna...
EUVD-2007-4908
Malware in sbrugna...
EUVD-2007-4910
Malware in sbrugna...
EUVD-2007-4911
Malware in sbrugna...
CVE-2023-22984
A Vulnerability was discovered in Axis 207W network camera. There is a reflected XSS vulnerability in the web administration portal, which allows an attacker to execute arbitrary JavaScript via URL...
AXIS 207W Network Camera XSS Vulnerability (Feb 2023)
AXIS 207W network camera devices are prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2023-22984
A Vulnerability was discovered in Axis 207W network camera. There is a reflected XSS vulnerability in the web administration portal, which allows an attacker to execute arbitrary JavaScript via URL...
Cross site scripting
UNSUPPORTED WHEN ASSIGNED A Vulnerability was discovered in Axis 207W network camera. There is a reflected XSS vulnerability in the web administration portal, which allows an attacker to execute arbitrary JavaScript via URL...
CVE-2023-22984
A Vulnerability was discovered in Axis 207W network camera. There is a reflected XSS vulnerability in the web administration portal, which allows an attacker to execute arbitrary JavaScript via URL...
AXIS 207W 跨站脚本漏洞
The AXIS 207W is a web camera from AXIS Sweden. The AXIS 207W network camera suffers from a cross-site scripting vulnerability that originates from a Reflected Cross-Site Scripting XSS vulnerability in the Web Management Portal, which can be exploited by a remote attacker to execute arbitrary...
PT-2023-18810 · Axis · Axis 207W
Name of the Vulnerable Software and Affected Versions: Axis 207W network camera affected versions not specified Description: A reflected XSS issue in the web administration portal of the Axis 207W network camera allows an attacker to execute arbitrary JavaScript via URL. This enables the attacker...
Unauthorized Access Vulnerability in AXIS 207W Network Camera
207W Network Camera is a network camera. An unauthorized access vulnerability exists in AXIS 207W Network Camera, which can be exploited by attackers to obtain sensitive information...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in the AXIS 207W camera allow remote attackers to perform certain actions as administrators via 1 axis-cgi/admin/restart.cgi, 2 the user and sgrp parameters to axis-cgi/admin/pwdgrp.cgi in an add action, or 3 the server parameter to...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the AXIS 207W camera allow remote attackers to inject arbitrary web script or HTML via the camNo parameter to incl/imageincl.shtml, and other unspecified vectors...
Design/Logic Flaw
axis-cgi/buffer/command.cgi on the AXIS 207W camera allows remote authenticated users to cause a denial of service reboot via many requests with unique buffer names in the buffername parameter in a start action...
CVE-2007-4927
axis-cgi/buffer/command.cgi on the AXIS 207W camera allows remote authenticated users to cause a denial of service reboot via many requests with unique buffer names in the buffername parameter in a start action...
CVE-2007-4929
Multiple cross-site scripting XSS vulnerabilities in the AXIS 207W camera allow remote attackers to inject arbitrary web script or HTML via the camNo parameter to incl/imageincl.shtml, and other unspecified vectors...
Design/Logic Flaw
The AXIS 207W camera stores a WEP or WPA key in cleartext in the configuration file, which might allow local users to obtain sensitive information...
CVE-2007-4926
The AXIS 207W camera uses a base64-encoded cleartext username and password for authentication, which allows remote attackers to obtain sensitive information by sniffing the wireless network or by leveraging unspecified other vectors...
CVE-2007-4928
The AXIS 207W camera stores a WEP or WPA key in cleartext in the configuration file, which might allow local users to obtain sensitive information...