3 matches found
CVE-2021-39285
A XSS vulnerability exists in Versa Director Release: 16.1R2 Build: S8. An attacker can use the administration web interface URL to create a XSS based attack...
Command Injection
Overview Affected versions of this package are vulnerable to Command Injection a malicious user could inject commands through the data variable: Affected Area require'../server/getJsonByCurl'mock2easy, function error, stdout if error return res.json500, error; res.jsonJSON.parsestdout; , '',...
Cisco RV110W, RV130W, and RV215W Authorization Issue Vulnerabilities (CNVD-2019-25712)
Cisco RV110W and others are a VPN firewall router from Cisco USA. An authorization issue vulnerability exists in the Cisco RV110W, RV130W, and RV215W, which can be exploited by a remote attacker to obtain a list of devices connected to a guest network by accessing a URL on the web interface...