Lucene search
K

5 matches found

NVD
NVD
added 2020/03/02 7:15 p.m.28 views

CVE-2018-15819

EasyIO EasyIO-30P devices before 2.0.5.27 have Incorrect Access Control, related to webuser.js...

7.5CVSS7.6AI score0.0181EPSS
Exploits3References2
CVE
CVE
added 2020/03/02 6:7 p.m.45 views

CVE-2018-15819

CVE-2018-15819 affects EasyIO-30P controllers (versions before 2.0.5.27). The vulnerability arises from Incorrect Access Control in the web interface (webuser.js), enabling authentication bypass. Connected sources also note associated cross‑site scripting issues (CVE-2018-15820) and remote exploi...

7.5CVSS7.5AI score0.0181EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2020/03/02 6:7 p.m.35 views

CVE-2018-15819

EasyIO EasyIO-30P devices before 2.0.5.27 have Incorrect Access Control, related to webuser.js...

7.6AI score0.0181EPSS
Exploits3References2
0day.today
0day.today
added 2019/04/10 12:0 a.m.261 views

EasyIO 30P Authentication Bypass / Cross Site Scripting Vulnerabilities

EasyIO 30P versions prior to 2.0.5.27 suffer from authentication bypass and cross site scripting vulnerabilities. EasyIO 30P Authentication Bypass / Cross Site Scripting Vulnerabilities INFORMATION Product: EasyIO 30P http://www.easyio.com Affected versions: 2.0.5.27 tested on version 2.0.5.16 CV...

0.1AI score0.0181EPSS
Exploits4
Packet Storm
Packet Storm
added 2019/04/09 12:0 a.m.71 views

EasyIO 30P Authentication Bypass / Cross Site Scripting

INFORMATION Product: EasyIO 30P http://www.easyio.com Affected versions: 2.0.5.27 tested on version 2.0.5.16 CVE IDs: CVE-2018-15820 Stored XSS and CVE-2018-15819 Authentication bypass Remote-exploit: yes TIMELINE Vendor notification: 3rd August, 2018 Vendor acknowledgment: 22nd August, 2018 Patc...

0.2AI score0.0181EPSS
Exploits4
Rows per page
Query Builder