CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site request forgery CSRF vulnerability in MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allows a remote unauthenticated attacker to hijack the user...

8.1CVSS7.1AI score0.00158EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 3:14 a.m.•3 views

CVE-2023-22280

MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allow a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command...

7.2CVSS7.2AI score0.00868EPSS

Exploits0References1

NVD•added 2023/01/17 10:15 a.m.•15 views

CVE-2023-22279

MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allow a remote unauthenticated attacker to execute an arbitrary OS command...

9.8CVSS9.7AI score0.01086EPSS

Exploits0References2

OSV•added 2023/01/17 10:15 a.m.•0 views

CVE-2023-22280

7.2CVSS7.3AI score

Exploits0References2

NVD•added 2023/01/17 10:15 a.m.•7 views

CVE-2023-22280

7.2CVSS7AI score0.00868EPSS

Exploits0References2

NVD•added 2023/01/17 10:15 a.m.•12 views

CVE-2023-22286

8.1CVSS8.3AI score0.00158EPSS

Exploits0References2

NVD•added 2023/01/17 10:15 a.m.•5 views

CVE-2023-22296

Reflected cross-site scripting vulnerability in MAHO-PBX NetDevancer series MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allows a remote unauthenticated...

6.1CVSS6.1AI score0.00471EPSS

Exploits0References2

Prion•added 2023/01/17 10:15 a.m.•9 views

Command injection

MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allow a remote unauthenticated attacker to execute an arbitrary OS command...

7.5CVSS9.6AI score0.01086EPSS

Exploits0References2Affected Software3

Prion•added 2023/01/17 10:15 a.m.•10 views

Cross site scripting

5.8CVSS6.5AI score0.00471EPSS

Exploits0References2Affected Software3

Prion•added 2023/01/17 10:15 a.m.•9 views

Cross site request forgery (csrf)

5.8CVSS8.6AI score0.00158EPSS

Exploits0References2Affected Software3

Positive Technologies•added 2023/01/17 12:0 a.m.•1 views

PT-2023-18398 · Maho Pbx · Maho-Pbx Netdevancer Vsg Lite/Uni +2

Name of the Vulnerable Software and Affected Versions: MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud versions prior to 1.11.00 MAHO-PBX NetDevancer VSG Lite/Uni versions prior to 1.11.00 MAHO-PBX NetDevancer MobileGate Home/Office versions prior to 1.11.00 Description: A cross-site request forgery CSRF...

8.1CVSS7.3AI score0.00158EPSS

Exploits0References5

Positive Technologies•added 2023/01/17 12:0 a.m.•1 views

PT-2023-18394 · Maho Pbx · Maho-Pbx Netdevancer Vsg Lite/Uni +2

7.2CVSS7.1AI score0.00868EPSS

Exploits0References5

CVE•added 2023/01/17 12:0 a.m.•43 views

CVE-2023-22296

CVE-2023-22296 : A reflected cross-site scripting (XSS) vulnerability exists in the MAHO-PBX NetDevancer family. A remote, unauthenticated attacker can inject arbitrary script via the Management screen in affected products prior to version 1.11.00. Affected lines include MAHO-PBX NetDevancer Lite...

6.1CVSS6AI score0.00471EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/01/17 12:0 a.m.•4 views

CVE-2023-22286

8.9AI score0.00158EPSS

Exploits0References2

Vulnrichment•added 2023/01/17 12:0 a.m.•5 views

CVE-2023-22279

MAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancer MobileGate Home/Office prior to Ver.1.11.00 allow a remote unauthenticated attacker to execute an arbitrary OS command...

9.9AI score0.01086EPSS

Exploits0References2

Cvelist•added 2023/01/17 12:0 a.m.•9 views

CVE-2023-22280

7.8AI score0.00868EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by