Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2026/01/07 11:11 p.m.4 views

CVE-2019-25284 V-SOL GPON/EPON OLT Platform V2.03.62R_IPv6 v2.03 Reflected Cross-Site Scripting Vulnerability

V-SOL GPON/EPON OLT Platform v2.03 contains multiple reflected cross-site scripting vulnerabilities due to improper input sanitization in various script parameters. Attackers can exploit these vulnerabilities by injecting malicious HTML and script code to execute arbitrary scripts in a victim's...

6.1CVSS6.4AI score0.0023EPSS
Exploits1References5
CVE
CVE
added 2026/01/07 11:11 p.m.10 views

CVE-2019-25284

CVE-2019-25284 concerns the V-SOL GPON/EPON OLT Platform. Connected sources confirm multiple reflected cross-site scripting vulnerabilities caused by improper input sanitization in various script parameters. The issues affect V-SOL GPON/EPON OLT Platform version 2.03 (and related entries citing 2...

6.1CVSS6.4AI score0.0023EPSS
Exploits1References5
CVE
CVE
added 2026/01/07 11:10 p.m.16 views

CVE-2019-25282

Summary of CVE-2019-25282 (V-SOL GPON/EPON OLT Platform) The issue is an open redirect vulnerability in the bindProfile.html script of V-SOL GPON/EPON OLT Platform, affecting versions 2.03 and 2.03.62R IPv6. The root cause is improper validation of the GET parameter named parent , allowing an att...

9.8CVSS6.5AI score0.00373EPSS
Exploits1References5
NVD
NVD
added 2025/12/24 8:15 p.m.9 views

CVE-2019-25238

V-SOL GPON/EPON OLT Platform 2.03 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft malicious web pages to create admin users, enable SSH, or modify system settings by tricking authenticated...

5.1CVSS0.00145EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/24 7:27 p.m.4 views

CVE-2019-25237 V-SOL GPON/EPON OLT Platform 2.03 Privilege Escalation via User Role Parameter

V-SOL GPON/EPON OLT Platform v2.03 contains a privilege escalation vulnerability that allows normal users to gain administrative access by manipulating the user role parameter. Attackers can send a crafted HTTP POST request to the user management endpoint with 'userrolemod' set to integer value '...

9.8CVSS6.9AI score0.00313EPSS
Exploits1References3
Rows per page
Query Builder