CVE-2022-48111

A cross-site scripting XSS vulnerability in the checklogin function of SIPE s.r.l WI400 between version 8 and 11 included allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the f parameter...

CVE-2022-48111

A cross-site scripting XSS vulnerability in the checklogin function of SIPE s.r.l WI400 between version 8 and 11 included allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the f parameter...

CVE-2021-38167

Roxy-WI through 5.2.2.0 allows SQL Injection via checklogin. An unauthenticated attacker can extract a valid uuid to bypass authentication...

Sql injection

Roxy-WI through 5.2.2.0 allows SQL Injection via checklogin. An unauthenticated attacker can extract a valid uuid to bypass authentication...

The vulnerability of the check_login function in the D-Link DNR-326 router microprogramming system allows a hacker to bypass the authentication process.

The vulnerability of the checklogin function in the D–Link DNR-326 router microprogramming system is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass the authentication process and register using the user’s cookie parameter...

Mantis Bug Tracker <= 1.1.3 - Remote Code Execution Exploit

No description provided by source. ?php / -------------------------------------------------------------------------------- Mantis Bug Tracker = 1.1.3 manageprojpage.php Remote Code Execution Exploit -------------------------------------------------------------------------------- author...: EgiX...

CVE-2006-0685

The checklogin function in login.php in Virtual Hosting Control System VHCS 2.4.7.1 and earlier does not exit when authentication fails, which allows remote attackers to gain unauthorized access...