8 matches found
CVE-2024-5410
creationtimestamp| type| source ---|---|--- 2025-02-13 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-15...
ORing IAP-420 2.01e Cross Site Scripting / Command Injection Vulnerabilities
------------------------------------------------------------------------------- title| Multiple Vulnerabilities product| ORing IAP-420 vulnerable version| 2.01e fixed version| - CVE number| CVE-2024-5410, CVE-2024-5411 impact| High homepage| https://oringnet.com/ found| 2024-01-19 by| T. Weber...
ORing IAP-420 2.01e Cross Site Scripting / Command Injection
CyberDanube Security Research 20240528-0 ------------------------------------------------------------------------------- title| Multiple Vulnerabilities product| ORing IAP-420 vulnerable version| 2.01e fixed version| - CVE number| CVE-2024-5410, CVE-2024-5411 impact| High homepage|...
CVE-2024-5410
Missing input validation in the ORing IAP-420 web-interface allows stored Cross-Site Scripting XSS.This issue affects IAP-420 version 2.01e and below...
CVE-2024-5410
Missing input validation in the ORing IAP-420 web-interface allows stored Cross-Site Scripting XSS.This issue affects IAP-420 version 2.01e and below...
CVE-2024-5410 Stored Cross-Site Scripting
Missing input validation in the ORing IAP-420 web-interface allows stored Cross-Site Scripting XSS.This issue affects IAP-420 version 2.01e and below...
CVE-2024-5410 Stored Cross-Site Scripting
Missing input validation in the ORing IAP-420 web-interface allows stored Cross-Site Scripting XSS.This issue affects IAP-420 version 2.01e and below...
CVE-2024-5410
CVE-2024-5410 affects ORing IAP-420 web-interface (version 2.01e and earlier). The stored XSS vulnerability can be triggered by injecting JavaScript into the SSID input field, and the filename parameter in a configuration file upload is prone to command injection, potentially giving an attacker c...