Lucene search
+L

575 matches found

cvelist
cvelist
added 2018/10/10 9:0 p.m.18 views

CVE-2018-17337

Intelbras NPLUG 1.0.0.14 devices have XSS via a crafted SSID that is received via a network broadcast...

6AI score0.00675EPSS
Exploits3References1
cvelist
cvelist
added 2018/10/10 9:0 p.m.26 views

CVE-2018-12455

Intelbras NPLUG 1.0.0.14 wireless repeater devices have a critical vulnerability that allows an attacker to authenticate in the web interface just by using "admin:" as the name of a cookie...

8.1AI score0.05867EPSS
Exploits3References1
cve
cve
added 2018/10/10 9:0 p.m.42 views

CVE-2018-17337

CVE-2018-17337 affects Intelbras NPLUG 1.0.0.14. The connected documents confirm a cross-site scripting (XSS) vulnerability that can be triggered by a specially crafted SSID received over a network broadcast. The root cause is the handling of SSID data leading to script/HTML injection. The report...

6.1CVSS5.9AI score0.00675EPSS
Exploits3References1Affected Software1
packetstorm
packetstorm
added 2018/10/09 12:0 a.m.64 views

NPLUG Wireless Repeater 1.0.0.14 CSRF / XSS / Authentication Bypass

===== Tempest Security Intelligence ===================================== Multiple vulnerabilities in NPLUG wireless repeater CVE-2018-12455: Authentication bypass CVE-2018-12456: Multiple CSRF CVE-2018-17337: XSS via SSID ------------------------------------------------------- Author: - Patrick...

0.5AI score0.05867EPSS
Exploits5
cnvd
cnvd
added 2018/08/17 12:0 a.m.5 views

Intelbras Win 240 Cross-Site Scripting Vulnerability

The Intelbras Win 240 is a wireless router from Intelbras Brazil. A cross-site scripting vulnerability exists in Intelbras Win 240 version 1.1.0. A remote attacker can exploit the vulnerability to change the Admin password...

10CVSS9AI score0.01878EPSS
Exploits0References1
nvd
nvd
added 2018/08/15 5:29 p.m.17 views

CVE-2018-10369

A Cross-site scripting XSS vulnerability was discovered on Intelbras Win 240 V1.1.0 devices. An attacker can change the Admin Password without a Login...

10CVSS8.3AI score0.01878EPSS
Exploits0References1
prion
prion
added 2018/08/15 5:29 p.m.15 views

Cross site scripting

A Cross-site scripting XSS vulnerability was discovered on Intelbras Win 240 V1.1.0 devices. An attacker can change the Admin Password without a Login...

10CVSS8.1AI score0.01878EPSS
Exploits0References1Affected Software1
osv
osv
added 2018/08/15 5:29 p.m.3 views

CVE-2018-10369

A Cross-site scripting XSS vulnerability was discovered on Intelbras Win 240 V1.1.0 devices. An attacker can change the Admin Password without a Login...

9.8CVSS5.8AI score0.01878EPSS
Exploits0References1
cvelist
cvelist
added 2018/08/15 5:0 p.m.18 views

CVE-2018-10369

A Cross-site scripting XSS vulnerability was discovered on Intelbras Win 240 V1.1.0 devices. An attacker can change the Admin Password without a Login...

8.3AI score0.01878EPSS
Exploits0References1
cve
cve
added 2018/08/15 5:0 p.m.46 views

CVE-2018-10369

CVE-2018-10369 affects Intelbras Win 240 router (V1.1.0). The vulnerability is a Cross‑Site Scripting (XSS) flaw in the device’s web interface that allows an attacker to change the Admin password without authentication. Multiple sources (NVD, CNVD, PRION, CVE list) corroborate the XSS impact on I...

10CVSS8.1AI score0.01878EPSS
Exploits0References1Affected Software1
openvas
openvas
added 2018/05/17 12:0 a.m.54 views

Intelbras NCLOUD 300 Router Authentication Bypass Vulnerability

The authentication in Intelbras NCLOUD 300 Routers can be bypassed. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS9.8AI score0.35573EPSS
Exploits5References2
packetstorm
packetstorm
added 2018/05/17 12:0 a.m.44 views

Intelbras NCLOUD 300 1.0 Authentication Bypass

coding: utf-8 Exploit Title: Intelbras NCloud Authentication bypass Date: 16/05/2018 Exploit Author: Pedro Aguiar - [email protected] Vendor Homepage: http://www.intelbras.com.br/ Software Link: http://www.intelbras.com.br/empresarial/wi-fi/para-sua-casa/roteadores/ncloud Version: 1.0 Test...

0.4AI score0.35573EPSS
Exploits5
zdt
zdt
added 2018/05/17 12:0 a.m.44 views

Intelbras NCLOUD 300 1.0 - Authentication bypass Exploit

Exploit for hardware platform in category web applications coding: utf-8 Exploit Title: Intelbras NCloud Authentication bypass Date: 16/05/2018 Exploit Author: Pedro Aguiar - email protected Vendor Homepage: http://www.intelbras.com.br/ Software Link:...

9.7AI score0.35573EPSS
Exploits5
exploitpack
exploitpack
added 2018/05/17 12:0 a.m.62 views

Intelbras NCLOUD 300 1.0 - Authentication bypass

Intelbras NCLOUD 300 1.0 - Authentication bypass coding: utf-8 Exploit Title: Intelbras NCloud Authentication bypass Date: 16/05/2018 Exploit Author: Pedro Aguiar - [email protected] Vendor Homepage: http://www.intelbras.com.br/ Software Link:...

10CVSS0.4AI score0.35573EPSS
Exploits5
exploitdb
exploitdb
added 2018/05/17 12:0 a.m.58 views

Intelbras NCLOUD 300 1.0 - Authentication bypass

coding: utf-8 Exploit Title: Intelbras NCloud Authentication bypass Date: 16/05/2018 Exploit Author: Pedro Aguiar - [email protected] Vendor Homepage: http://www.intelbras.com.br/ Software Link: http://www.intelbras.com.br/empresarial/wi-fi/para-sua-casa/roteadores/ncloud Version: 1.0 Test...

10CVSS9.6AI score0.35573EPSS
Exploits5
osv
osv
added 2018/05/15 7:29 p.m.8 views

CVE-2018-11094

An issue was discovered on Intelbras NCLOUD 300 1.0 devices. /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings do not require authentication. For example, when an HTTP POST request is made to /cgi-bin/ExportSettings.sh, the username, password, and...

9.8CVSS5.8AI score0.35573EPSS
Exploits5References2
nvd
nvd
added 2018/05/15 7:29 p.m.20 views

CVE-2018-11094

An issue was discovered on Intelbras NCLOUD 300 1.0 devices. /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings do not require authentication. For example, when an HTTP POST request is made to /cgi-bin/ExportSettings.sh, the username, password, and...

10CVSS9.4AI score0.35573EPSS
Exploits5References2
prion
prion
added 2018/05/15 7:29 p.m.14 views

Authentication flaw

An issue was discovered on Intelbras NCLOUD 300 1.0 devices. /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings do not require authentication. For example, when an HTTP POST request is made to /cgi-bin/ExportSettings.sh, the username, password, and...

10CVSS9.4AI score0.35573EPSS
Exploits5References2Affected Software1
cvelist
cvelist
added 2018/05/15 7:0 p.m.26 views

CVE-2018-11094

An issue was discovered on Intelbras NCLOUD 300 1.0 devices. /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings do not require authentication. For example, when an HTTP POST request is made to /cgi-bin/ExportSettings.sh, the username, password, and...

9.5AI score0.35573EPSS
Exploits5References2
cve
cve
added 2018/05/15 7:0 p.m.59 views

CVE-2018-11094

CVE-2018-11094 — Intelbras NCLOUD 300 1.0 Authentication bypass . Public sources describe endpoints that do not require authentication: /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings. An HTTP POST to /cgi-bin/ExportSettings.sh can disclose the we...

10CVSS9.3AI score0.35573EPSS
Exploits5References2Affected Software1
Rows per page
Query Builder