CyberData 011209 Intercom 访问控制错误漏洞

CyberData 011209 Intercom is an emergency call device from CyberData, Inc. CyberData 011209 Intercom suffers from an access control error vulnerability that stems from unauthorized access that could result in a denial of service...

PT-2025-24574 · Cyberdata · Cyberdata 011209 Intercom

Name of the Vulnerable Software and Affected Versions: CyberData 011209 Intercom affected versions not specified Description: The issue concerns the improper storage or protection of web server admin credentials. Recommendations: At the moment, there is no information about a newer version that...

CyberData 011209 Intercom SQL注入漏洞

CyberData 011209 Intercom is an emergency call appliance from CyberData Corporation. CyberData 011209 Intercom suffers from a SQL injection vulnerability that stems from susceptibility to blind SQL injection attacks...

PT-2025-24571 · Cyberdata · Cyberdata 011209 Intercom

Name of the Vulnerable Software and Affected Versions: CyberData 011209 Intercom versions affected versions not specified Description: The issue allows an unauthenticated user to gather sensitive information through blind SQL injections. Recommendations: At the moment, there is no information abo...

Intercom Chatbot Detected

This is an informational plugin to inform the user that the scanner has detected a publicly accessible Intercom chatbot on the target application. Intercom is a solution to build & deploy AI customer experiences. This detection is included in the AI and LLM category. No source data...

CyberData 011209 SIP Emergency Intercom

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information, cause a denial-of-service condition, or achieve code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation...

CVE-2024-3218

A vulnerability classified as critical has been found in Shibang Communications IP Network Intercom Broadcasting System 1.0. This affects an unknown part of the file /php/busyscreenshotpush.php. The manipulation of the argument jsondatacallee/jsondataimagename leads to path traversal: '../filedir...

CVE-2024-29206

An Improper Access Control could allow a malicious actor authenticated in the API to enable Android Debug Bridge ADB and make unsupported changes to the system. Affected Products: UniFi Connect EV Station Version 1.1.18 and earlier UniFi Connect EV Station Pro Version 1.1.18 and earlier UniFi...

CVE-2023-6895

A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.320201113RELEASEHIK. It has been declared as critical. This vulnerability affects unknown code of the file /php/ping.php. The manipulation of the argument jsondataip with the input netstat -ano leads to os command injection...

CVE-2023-6893

A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.320201113RELEASEHIK and classified as problematic. Affected by this issue is some unknown functionality of the file /php/exportrecord.php. The manipulation of the argument downname with the input...

CVE-2023-6894

A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.320201113RELEASEHIK. It has been classified as problematic. This affects an unknown part of the file access/html/system.html of the component Log File Handler. The manipulation leads to information disclosure. The exploit has...

CVE-2019-14365

The Intercom plugin through 1.2.1 for WordPress leaks a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack channels, members, etc...

SQL Injection Vulnerability in E-Call Intercom System of Beijing Divine Viewpoint Technology Co.

Ltd. is a professional provider of network audio-video and informatization solutions in the fields of intelligent hospital, intelligent education and information dissemination. There is a SQL injection vulnerability in the E-call intercom system of Beijing Divine Viewpoint Technology Co., Ltd,...

Akuvox Smart Intercom/Doorphone ServicesHTTPAPI Improper Access Control

Akuvox Smart Intercom/Doorphone ServicesHTTPAPI Improper Access Control Vendor: The Akuvox Company Product web page: https://www.akuvox.com Affected version: Doorphone: S539 S532 X916 X915 X912 R29 Intercom: E16C R20K-2 R20A-2 C313W-2 NS-2 NC-2 NX-2 Firmware: 912.30.1.137 Summary: Vandal-resistan...

Akuvox Smart Intercom/Doorphone ServicesHTTPAPI Improper Access Control Vulnerability

The Akuvox Smart Intercom/Doorphone suffers from an insecure service API access control. The vulnerability in ServicesHTTPAPI endpoint allows users with "User" privileges to modify API access settings and configurations. This improper access control permits privilege escalation, enabling...

Akuvox Smart Intercom/Doorphone ServicesHTTPAPI Improper Access Control

Summary Vandal-resistant Door Phone for High-end Buildings. Offering top-of-the-line features, Akuvox X912 is targeted at high-end residential and commercial projects. With a compact size, it is perfect for buildings with limited installation space. Description The Akuvox Smart Intercom/Doorphone...

AIPHONE IX SYSTEM和AIPHONE IXG SYSTEM 安全漏洞

AIPHONE IX SYSTEM and AIPHONE IXG SYSTEM are both products of AIPHONE CORPORATION Japan AIPHONE IX SYSTEM is an IP visual intercom system.AIPHONE IXG SYSTEM is an IP-based residential system. A security vulnerability exists in AIPHONE IX SYSTEM and AIPHONE IXG SYSTEM that stems from the presence ...

Akuvox Smart Intercom/Doorphone Unauthenticated Stream Disclosure

Akuvox Smart Intercom/Doorphone Unauthenticated Stream Disclosure Vendor: The Akuvox Company Product web page: https://www.akuvox.com Affected version: Doorphone: S539 S532 X916 X915 X912 R29 Intercom: R20K-2 R20A-2 C313W-2 NS-2 NC-2 NX-2 Firmware: 912.30.1.137 Summary: Vandal-resistant Door Phon...

CVE-2024-29206

CVE-2024-29206 concerns multiple Ubiquiti UniFi devices. The issue is described as an improper access control that, if an attacker is authenticated in the API, can enable Android Debug Bridge (ADB) and make unsupported changes to the system. Affected products and versions include: UniFi Connect E...

CVE-2024-31680

File Upload vulnerability in Shibang Communications Co., Ltd. IP network intercom broadcasting system v.1.0 allows a local attacker to execute arbitrary code via the myparser.php component...