15 matches found
EUVD-2015-5570
Malware in sbrugna...
EUVD-2015-2958
Malware in sbrugna...
EUVD-2015-2959
Malware in sbrugna...
SOCA Access Control System 180612 - CSRF (Add Admin) Vulnerability
Exploit for php platform in category web applications SOCA Access Control System 180612 CSRF Add Admin Exploit Vendor: SOCA Technology Co., Ltd Product web page: http://www.socatech.com Affected version: 180612, 170000 and 141007 Summary: The company's products include Proximity and Fingerprint...
CVE-2015-5618
Chiyu BF-630 and BF-630W fingerprint access-control devices allow remote attackers to bypass authentication and 1 read or 2 modify a Voice Time Set configuration settings via a request to voice.htm or b UniFinger configuration settings via a request to bf.htm, a different vulnerability than...
CVE-2015-2871
Chiyu BF-660C fingerprint access-control devices allow remote attackers to bypass authentication and 1 read or 2 modify communication configuration settings via a request to net.htm, a different vulnerability than CVE-2015-5618...
Authentication flaw
Chiyu BF-660C fingerprint access-control devices allow remote attackers to bypass authentication and 1 read or 2 modify communication configuration settings via a request to net.htm, a different vulnerability than CVE-2015-5618...
Cross site scripting
Cross-site scripting XSS vulnerability on Chiyu BF-630, BF-630W, and BF-660C fingerprint access-control devices allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element...
Authentication flaw
Chiyu BF-630 and BF-630W fingerprint access-control devices allow remote attackers to bypass authentication and 1 read or 2 modify a Voice Time Set configuration settings via a request to voice.htm or b UniFinger configuration settings via a request to bf.htm, a different vulnerability than...
CVE-2015-2870
CVE-2015-2870 affects Chiyu BF-630, BF-630W and BF-660C fingerprint access-control devices. The vulnerability is a cross-site scripting (XSS) flaw that lets remote attackers inject arbitrary web script or HTML via a SCRIPT element, typically through a URL passed to the device. The related CERT/CC...
CVE-2015-5618
The CVE-2015-5618 entry concerns Chiyu BF-630 and BF-630W fingerprint access-control devices. The documented vulnerability allows remote attackers to bypass authentication and read or modify configuration data: (1) Voice Time Set via a request to voice.htm and (2) UniFinger configuration via a re...
CVE-2015-2870
Cross-site scripting XSS vulnerability on Chiyu BF-630, BF-630W, and BF-660C fingerprint access-control devices allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element...
CVE-2015-2871
CVE-2015-2871 affects Chiyu BF-660C fingerprint access-control devices (and related BF-630/BF-630W family in CNVD/CNVD entries). The available documents state a remote attacker can bypass authentication and read or modify communication configuration settings by sending a crafted request to net.ht...
Chiyu Technology fingerprint access control contains multiple vulnerabilities
Overview Multiple models of Chiyu Technology fingerprint access control devices contain a cross-site scripting XSS vulnerability and an authentication bypass vulnerability. Description CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS- CVE-2015-2870According to t...
Grand MA 300 Fingerprint Reader Weak PIN Verification
=== LSE Leading Security Experts GmbH - Security Advisory 2014-07-13 === Grand MA 300 Fingerprint Reader - Weak Pin Verification ------------------------------------------------------------------------ Affected Versions ================= Grand MA 300/ID with firmware 6.60 Issue Overview...