CVE-2019-15656

D-Link DSL-2875AL and DSL-2877AL devices through 1.00.05 are prone to information disclosure via a simple crafted request to index.asp on the web management server because of usernamev and passwordv variables...

PT-2020-4209 · D Link · D-Link Dsl-2875Al +1

Name of the Vulnerable Software and Affected Versions: D-Link DSL-2875AL and DSL-2877AL devices through 1.00.05 Description: The issue is related to information disclosure via a crafted request to "index.asp" on the web management server. This is due to the username v and password v variables. Th...

CVE-2017-5882

Cross-site scripting XSS vulnerability in index.asp in SANADATA SanaCMS 7.3 allows remote attackers to inject arbitrary web script or HTML via the search parameter...

Lois Software 2.0a SQL Injection

Vulnerability ID: HTB22430 Reference: http://www.htbridge.ch/advisory/sqlinjectionvulnerabilityinwebdb1.html Product: WebDB Vendor: Lois Software Vulnerable Version: 2.0a and Probably Prior Versions Vendor Notification: 10 June 2010 Vulnerability Type: SQL Injection Status: Fixed by Vendor Risk...

PT-2004-2554 · Unknown · Password Protect

Name of the Vulnerable Software and Affected Versions: Password Protect affected versions not specified Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the ShowMsg parameter in...