35 matches found
CVE-2022-42054
Multiple stored cross-site scripting XSS vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Company Name and Description text fields...
CVE-2022-42055
Multiple command injection vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 via the ping and traceroute tools allow attackers to read arbitrary files on the system...
EUVD-2022-45146
Malicious code in bioql PyPI...
EUVD-2022-45145
Malicious code in bioql PyPI...
EUVD-2022-47161
Malicious code in bioql PyPI...
CVE-2022-44212
In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to access devices' admin panel...
CVE-2022-44211
In GL.iNet Goodcloud 1.1 Incorrect access control allows a remote attacker to access/change devices' settings...
CVE-2022-44212
In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to access devices' admin panel...
CVE-2022-44211
In GL.iNet Goodcloud 1.1 Incorrect access control allows a remote attacker to access/change devices' settings...
Code injection
In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to access devices' admin panel...
Improper access control
In GL.iNet Goodcloud 1.1 Incorrect access control allows a remote attacker to access/change devices' settings...
CVE-2022-44211
In GL.iNet Goodcloud 1.1 Incorrect access control allows a remote attacker to access/change devices' settings...
GL.iNet GoodCloud 安全漏洞
GL.iNet GoodCloud is an Internet of Things IoT device management system from China's Guanglian Zhitong GL.iNet. A security vulnerability exists in GL.iNet GoodCloud version 1.1, which stems from incorrect access control...
GL.iNet GoodCloud 安全漏洞
GL.iNet GoodCloud is an IoT device management system from China's Guanglian Zhitong GL.iNet. A security vulnerability exists in GL.iNet GoodCloud version 1.0. An attacker can access the device's management panel by exploiting the vulnerability...
CVE-2022-44212
In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to access devices' admin panel...
CVE-2022-44212
CVE-2022-44212 affects GL.iNet Goodcloud 1.0. The vulnerability is described as an insecure design that allows a remote attacker to access the device management/admin panel. The cited metrics from NVD indicate a CVSS v3.1 base score of 5.9 (Medium) with Network attack vector, high attack complexi...
PT-2022-27143 · Gl.Inet · Gl.Inet Goodcloud
Name of the Vulnerable Software and Affected Versions: GL.iNet Goodcloud version 1.0 Description: The issue is related to an insecure design in the software, which allows a remote attacker to access the devices' admin panel. Recommendations: For GL.iNet Goodcloud version 1.0, consider restricting...
CVE-2022-44211
In GL.iNet Goodcloud 1.1 Incorrect access control allows a remote attacker to access/change devices' settings...
CVE-2022-44212
In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to access devices' admin panel...
CVE-2022-44211
GL.iNet Goodcloud 1.1 is affected by an improper access control vulnerability. The issue allows a remote attacker to access or change devices’ settings due to insufficient authorization checks in the Goodcloud component. Affected product: GL.iNet Goodcloud (version 1.1). Reported impact per conne...