23 matches found
CVE-2022-42054
Multiple stored cross-site scripting XSS vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Company Name and Description text fields...
CVE-2022-42055
Multiple command injection vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 via the ping and traceroute tools allow attackers to read arbitrary files on the system...
EUVD-2022-45145
Malicious code in bioql PyPI...
EUVD-2022-47161
Malicious code in bioql PyPI...
EUVD-2022-45146
Malicious code in bioql PyPI...
CVE-2022-44212
In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to access devices' admin panel...
CVE-2022-44212
In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to access devices' admin panel...
CVE-2022-44211
In GL.iNet Goodcloud 1.1 Incorrect access control allows a remote attacker to access/change devices' settings...
Improper access control
In GL.iNet Goodcloud 1.1 Incorrect access control allows a remote attacker to access/change devices' settings...
Code injection
In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to access devices' admin panel...
GL.iNet GoodCloud 安全漏洞
GL.iNet GoodCloud is an Internet of Things IoT device management system from China's Guanglian Zhitong GL.iNet. A security vulnerability exists in GL.iNet GoodCloud version 1.1, which stems from incorrect access control...
CVE-2022-44212
In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to access devices' admin panel...
CVE-2022-44212
In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to access devices' admin panel...
CVE-2022-44211
In GL.iNet Goodcloud 1.1 Incorrect access control allows a remote attacker to access/change devices' settings...
CVE-2022-44211
In GL.iNet Goodcloud 1.1 Incorrect access control allows a remote attacker to access/change devices' settings...
CVE-2022-44212
CVE-2022-44212 affects GL.iNet Goodcloud 1.0. The vulnerability is described as an insecure design that allows a remote attacker to access the device management/admin panel. The cited metrics from NVD indicate a CVSS v3.1 base score of 5.9 (Medium) with Network attack vector, high attack complexi...
CVE-2022-42055
Multiple command injection vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 via the ping and traceroute tools allow attackers to read arbitrary files on the system...
Command injection
Multiple command injection vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 via the ping and traceroute tools allow attackers to read arbitrary files on the system...
PT-2022-26224 · Gl.Inet · Gl.Inet Goodcloud Iot Device Management System
Name of the Vulnerable Software and Affected Versions: GL.iNet GoodCloud IoT Device Management System version 1.00.220412.00 Description: The issue concerns multiple stored cross-site scripting XSS vulnerabilities. These vulnerabilities allow attackers to execute arbitrary web scripts or HTML via...
CVE-2022-42055
Multiple command injection vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 via the ping and traceroute tools allow attackers to read arbitrary files on the system...