CVE-2024-40091

Vilo 5 Mesh WiFi System = 5.16.1.33 lacks authentication in the Boa webserver, which allows remote, unauthenticated attackers to retrieve logs with sensitive system...

CVE-2023-5499

Information exposure vulnerability in Shenzhen Reachfar v28, the exploitation of which could allow a remote attacker to retrieve all the week's logs stored in the 'log2' directory. An attacker could retrieve sensitive information such as remembered wifi networks, sent messages, SOS device locatio...

CVE-2022-48309

A CSRF vulnerability allows malicious websites to retrieve logs and technical support archives in Sophos Connect versions older than 2.2.90...

Cross site request forgery (csrf)

A CSRF vulnerability allows malicious websites to retrieve logs and technical support archives in Sophos Connect versions older than 2.2.90...

CVE-2019-1622

A vulnerability in the web-based management interface of Cisco Data Center Network Manager DCNM could allow an unauthenticated, remote attacker to retrieve sensitive information from an affected device. The vulnerability is due to improper access controls for certain URLs on affected DCNM softwar...

Seagate Personal Cloud Seagate Media Server Command Injection Vulnerability

Seagate Personal Cloud is a personal cloud storage device from Seagate, U.S. Seagate Media Server is one of the media servers. A command injection vulnerability exists in the 'uploadTelemetry' and 'getLogs' functions of the Seagate Media Server in Seagate Personal Cloud that stems from the progra...