107 matches found
CVE-2023-4476
The Locatoraid Store Locator WordPress plugin before 3.9.24 does not sanitise and escape the lpr-search parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
EUVD-2000-1193
Malware in sbrugna...
EUVD-2001-0889
Malware in sbrugna...
EUVD-1999-1083
Malware in sbrugna...
EUVD-1999-0032
Malware in sbrugna...
EUVD-2025-19571
Malicious code in bioql PyPI...
CVE-2025-47822
Flock Safety LPR License Plate Reader devices with firmware through 2.2 have an on-chip debug interface with improper access control...
CVE-2025-47823
Flock Safety LPR License Plate Reader devices with firmware through 2.2 have a hardcoded password for a system...
PT-2025-27041 · Flock Safety · Flock Safety Lpr
Name of the Vulnerable Software and Affected Versions: Flock Safety LPR devices with firmware through 2.2 Description: The issue concerns a hardcoded password for a system in Flock Safety LPR devices. Recommendations: For Flock Safety LPR devices with firmware through 2.2, consider changing the...
PT-2025-27040
Name of the Vulnerable Software and Affected Versions: Flock Safety LPR devices versions through 2.2 Description: The issue concerns an on-chip debug interface with improper access control. Recommendations: For versions through 2.2, consider disabling the on-chip debug interface until a patch is...
PT-2025-27042 · Flock Safety · Flock Safety Lpr
Name of the Vulnerable Software and Affected Versions: Flock Safety LPR devices with firmware through 2.2 Description: The issue concerns cleartext storage of code in Flock Safety LPR devices. Recommendations: For Flock Safety LPR devices with firmware through 2.2, update to a version that...
The vulnerability of Geovision GV-VS12, GV-VS11, GV-DSP LPR V3, GVLX 4, and GVLX 4 IP video server microprogramming systems arises from the failure to eliminate special elements used in the operating system’s command set. This allows attackers to execute arbitrary commands.
The vulnerability of Geovision GV-VS12, GV-VS11, GV-DSP LPR V3, GVLX 4, and GVLX 4 microprogrammed software for IP video servers is related to the lack of measures taken to neutralize special elements used in the operating system’s commands. Exploiting this vulnerability allows a malicious actor ...
CVE-2024-38285 Insufficiently Protected Credentials in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600)
Logs storing credentials are insufficiently protected and can be decoded through the use of open source tools...
CVE-2024-38285 Insufficiently Protected Credentials in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600)
Logs storing credentials are insufficiently protected and can be decoded through the use of open source tools...
CVE-2024-38284 Authentication Bypass by Capture-replay in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600)
Transmitted data is logged between the device and the backend service. An attacker could use these logs to perform a replay attack to replicate calls...
CVE-2024-38284 Authentication Bypass by Capture-replay in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600)
Transmitted data is logged between the device and the backend service. An attacker could use these logs to perform a replay attack to replicate calls...
CVE-2024-38283 Missing Encryption of Sensitive Data in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600)
Sensitive customer information is stored in the device without encryption...
CVE-2024-38282 Insufficiently Protected Credentials in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600)
Utilizing default credentials, an attacker is able to log into the camera's operating system which could allow changes to be made to the operations or shutdown the camera requiring a physical reboot of the system...
CVE-2024-38281 Use of Hard-coded Credentials in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600)
An attacker can access the maintenance console using hard coded credentials for a hidden wireless network on the device...
CVE-2024-38281 Use of Hard-coded Credentials in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600)
An attacker can access the maintenance console using hard coded credentials for a hidden wireless network on the device...