Lucene search
K

273 matches found

Positive Technologies
Positive Technologies
added 2020/05/22 12:0 a.m.4 views

PT-2020-13516 · Tenda · Tenda Ac6 +3

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 1.0 V15.03.05.19 multi TD01 Tenda AC9 version 1.0 V15.03.05.196318 CN Tenda AC9 version 3.0 V15.03.06.42 multi Tenda AC15 version 1.0 V15.03.05.19 multi TD01 Tenda AC18 version 15.03.05.196318 CN Description: A buffer overfl...

9.8CVSS7.8AI score0.03292EPSS
Exploits1References6
NVD
NVD
added 2019/06/05 6:29 p.m.26 views

CVE-2019-12196

A SQL injection vulnerability in /client/api/json/v2/nfareports/compareReport in Zoho ManageEngine NetFlow Analyzer 12.3 allows attackers to execute arbitrary SQL commands via the DeviceID parameter...

9.8CVSS9.9AI score0.69071EPSS
Exploits0References2
OSV
OSV
added 2019/06/05 6:29 p.m.3 views

CVE-2019-12196

A SQL injection vulnerability in /client/api/json/v2/nfareports/compareReport in Zoho ManageEngine NetFlow Analyzer 12.3 allows attackers to execute arbitrary SQL commands via the DeviceID parameter...

9.8CVSS7.6AI score0.69071EPSS
Exploits0References2
Prion
Prion
added 2019/06/05 6:29 p.m.13 views

Sql injection

A SQL injection vulnerability in /client/api/json/v2/nfareports/compareReport in Zoho ManageEngine NetFlow Analyzer 12.3 allows attackers to execute arbitrary SQL commands via the DeviceID parameter...

7.5CVSS9.8AI score0.69071EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2018/03/07 12:0 a.m.3 views

D-Link DIR Series Cross-Site Scripting Vulnerability (CNVD-2018-06630)

The D-Link DIR-868L, DIR-865L and DIR-860L are all wireless router products from AUO D-Link. A cross-site scripting vulnerability exists in the htdocs/webinc/js/advparentctrlmap.php file in the D-Link DIR-868L, DIR-865L, and DIR-860L. A remote attacker can exploit the vulnerability by sending a...

6.1CVSS6.3AI score0.01661EPSS
Exploits1References1
NVD
NVD
added 2018/03/06 8:29 p.m.17 views

CVE-2018-6527

XSS vulnerability in htdocs/webinc/js/advparentctrlmap.php in D-Link DIR-868L DIR868LA1FW112b04 and previous versions, DIR-865L DIR-865LREVAFIRMWAREPATCH1.08.B01 and previous versions, and DIR-860L DIR860LA1FW110b04 and previous versions allows remote attackers to read a cookie via a crafted...

6.1CVSS5.9AI score0.01661EPSS
Exploits1References4
OSV
OSV
added 2018/03/06 8:29 p.m.3 views

CVE-2018-6527

XSS vulnerability in htdocs/webinc/js/advparentctrlmap.php in D-Link DIR-868L DIR868LA1FW112b04 and previous versions, DIR-865L DIR-865LREVAFIRMWAREPATCH1.08.B01 and previous versions, and DIR-860L DIR860LA1FW110b04 and previous versions allows remote attackers to read a cookie via a crafted...

6.1CVSS5.8AI score0.01661EPSS
Exploits1References4
CVE
CVE
added 2018/03/06 8:0 p.m.56 views

CVE-2018-6527

The CVE-2018-6527 issue affects D-Link DIR-868L, DIR-865L and DIR-860L routers. It is a cookie disclosure via an XSS-like flaw in htdocs/webinc/js/adv_parent_ctrl_map.php that can be triggered by a crafted deviceid parameter to soap.cgi, exposing cookie data. Root cause: inadequate protection of ...

6.1CVSS5.8AI score0.01661EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2018/01/13 12:0 a.m.4 views

PT-2018-4008 · D Link · Dir-860L +2

Name of the Vulnerable Software and Affected Versions: D-Link DIR-868L versions DIR868LA1 FW112b04 and earlier D-Link DIR-865L versions DIR-865L REVA FIRMWARE PATCH 1.08.B01 and earlier D-Link DIR-860L versions DIR860LA1 FW110b04 and earlier Description: The issue allows remote attackers to read ...

6.4CVSS6AI score0.01661EPSS
Exploits1References8
Prion
Prion
added 2017/03/23 8:59 p.m.17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Management Console in Alcatel-Lucent Motive Home Device Manager HDM before 4.2 allow remote attackers to inject arbitrary web script or HTML via the 1 deviceTypeID parameter to DeviceType/getDeviceType.do; the 2 policyActionClass or 3...

3.5CVSS6AI score0.00637EPSS
Exploits1References1Affected Software1
myhack58
myhack58
added 2015/09/15 12:0 a.m.20 views

HackPwn: nine Yang smart soymilk crack the details of the analysis-vulnerability warning-the black bar safety net

Nine male DJ08B-D667SG soymilk is a smart milk machine, you can configure the WIFI connection to the Internet, the user can through the“nine Yang cloud appliances”mobile app for soymilk for remote control, remote turn on, turn off the milk machine and other functions. While in 2 0 1 5 HackPwn,...

Exploits0
Positive Technologies
Positive Technologies
added 2014/07/07 12:0 a.m.4 views

PT-2014-3413 · D Link · D-Link Dir-645 Router

Name of the Vulnerable Software and Affected Versions: D-Link DIR-645 Router Rev. A1 with firmware prior to 1.04B11 Description: The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via the deviceid parameter to the "parentalcontrols/bind.php" endpoint, t...

4.3CVSS6.6AI score0.27753EPSS
Exploits1References8
securityvulns
securityvulns
added 2000/09/18 12:0 a.m.100 views

Cisco CDP attacks

Folks, when playing around with CDP, I discovered several interesting things. Due the leak of Cisco hardware around here, I ask you for your expiriences. Details as follows: Program: http://www.phenoelit.de/irpas/cdp.c Known effekts: -IOS 11.11: when flooding the cisco with random deviceID update...

Exploits0
Rows per page
Query Builder