CVE-2021-47708

COMMAX Smart Home System CDP-1020n contains an SQL injection vulnerability that allows attackers to bypass authentication by injecting arbitrary SQL code through the 'id' parameter in 'loginstart.asp'. Attackers can exploit this by sending a POST request with malicious 'id' values to manipulate...

EUVD-2021-34731

COMMAX Smart Home System CDP-1020n contains an SQL injection vulnerability that allows attackers to bypass authentication by injecting arbitrary SQL code through the 'id' parameter in 'loginstart.asp'. Attackers can exploit this by sending a POST request with malicious 'id' values to manipulate...

CVE-2021-47708 COMMAX Smart Home IoT Control System SQL Injection Authentication Bypass

COMMAX Smart Home System CDP-1020n contains an SQL injection vulnerability that allows attackers to bypass authentication by injecting arbitrary SQL code through the 'id' parameter in 'loginstart.asp'. Attackers can exploit this by sending a POST request with malicious 'id' values to manipulate...

CVE-2021-47708

CVE-2021-47708 affects the COMMAX Smart Home System CDP-1020n. A SQL injection in the loginstart.asp id parameter allows an attacker to bypass authentication by sending a crafted POST with malicious id values, manipulating database queries to gain unauthorized access. The Red Hat and EU/NVD-style...

PT-2025-50238

Name of the Vulnerable Software and Affected Versions COMMAX Smart Home System CDP-1020n affected versions not specified Description The COMMAX Smart Home System is susceptible to a SQL injection issue. This allows attackers to circumvent authentication by injecting malicious SQL code through the...

COMMAX Smart Home System SQL注入漏洞

COMMAX Smart Home System is a smart home system from the Korean company COMMAX. A SQL injection vulnerability exists in COMMAX Smart Home System, which stems from a SQL injection issue in the id parameter of loginstart.asp, which could lead to authentication bypass...