Chiyu BF-660C fingerprint access-control device privilege access vulnerability

Chiyu BF-660C fingerprint access-control devices is a network-type fingerprint access control device from Chiyu. A security vulnerability exists in the Chiyu BF-660C fingerprint access-control devices. The vulnerability can be exploited by a remote attacker to bypass authentication and read or...

Multiple Chiyu Products Cross-Site Scripting Vulnerabilities

Chiyu BF-630, BF-630W and BF-660C are all products of Chiyu.BF-630 and BF-630W are networked fingerprint access controllers.BF-660C is a networked fingerprint access control and time and attendance machine. A cross-site scripting vulnerability exists in multiple Chiyu products. A remote attacker...

CVE-2015-2871

Chiyu BF-660C fingerprint access-control devices allow remote attackers to bypass authentication and 1 read or 2 modify communication configuration settings via a request to net.htm, a different vulnerability than CVE-2015-5618...

CVE-2015-2870

Cross-site scripting XSS vulnerability on Chiyu BF-630, BF-630W, and BF-660C fingerprint access-control devices allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element...

Cross site scripting

Cross-site scripting XSS vulnerability on Chiyu BF-630, BF-630W, and BF-660C fingerprint access-control devices allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element...

Authentication flaw

Chiyu BF-660C fingerprint access-control devices allow remote attackers to bypass authentication and 1 read or 2 modify communication configuration settings via a request to net.htm, a different vulnerability than CVE-2015-5618...

CVE-2015-2870

Cross-site scripting XSS vulnerability on Chiyu BF-630, BF-630W, and BF-660C fingerprint access-control devices allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element...

CVE-2015-2871

CVE-2015-2871 affects Chiyu BF-660C fingerprint access-control devices (and related BF-630/BF-630W family in CNVD/CNVD entries). The available documents state a remote attacker can bypass authentication and read or modify communication configuration settings by sending a crafted request to net.ht...

CVE-2015-2871

Chiyu BF-660C fingerprint access-control devices allow remote attackers to bypass authentication and 1 read or 2 modify communication configuration settings via a request to net.htm, a different vulnerability than CVE-2015-5618...