EUVD-2022-42837

Malicious code in bioql PyPI...

CVE-2022-3465

A vulnerability classified as critical was found in Mediabridge Medialink. This vulnerability affects unknown code of the file /index.asp. The manipulation leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The...

CVE-2022-3465

A vulnerability classified as critical was found in Mediabridge Medialink. This vulnerability affects unknown code of the file /index.asp. The manipulation leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The...

Authentication flaw

A vulnerability classified as critical was found in Mediabridge Medialink. This vulnerability affects unknown code of the file /index.asp. The manipulation leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The...

CVE-2022-3465 Mediabridge Medialink index.asp improper authentication

A vulnerability classified as critical was found in Mediabridge Medialink. This vulnerability affects unknown code of the file /index.asp. The manipulation leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The...

CVE-2022-3465

The CVE-2022-3465 entry concerns Mediabridge Medialink devices with an improper authentication flaw in unknown code of /index.asp. The vulnerability can be exploited remotely and has publicly disclosed exploits; documents do not specify affected models/firmware versions or a fix. Some sources rei...

CVE-2022-3465 Mediabridge Medialink index.asp improper authentication

A vulnerability classified as critical was found in Mediabridge Medialink. This vulnerability affects unknown code of the file /index.asp. The manipulation leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The...

PT-2022-22268 · Mediabridge · Mediabridge Medialink

Name of the Vulnerable Software and Affected Versions: Mediabridge Medialink affected versions not specified Description: A critical issue was found in Mediabridge Medialink, affecting the file /index.asp, which leads to improper authentication. The attack can be initiated remotely...

MediaLink MWN-WAPR300N Insecure Session

MediaLink router MWN-WAPR300N - Several Vulnerabilities The vulnerabilities reported here are for the firmware version currently being shipped by Amazon.com. This is hardware version 2.0, firmware version V5.07.51enMDL01 . I have no knowledge of the behavior of previous versions of this router...

CVE-2015-5994

The web management interface on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 has a default password of admin for the admin account and a default password of password for the medialink account, which allows remote attackers to obtain administrative privileges by leveraging a...

Design/Logic Flaw

Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 and Tenda N3 Wireless N150 devices allow remote attackers to obtain administrative access via a certain admin substring in an HTTP Cookie header...

Default credentials

The web management interface on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 has a default password of admin for the admin account and a default password of password for the medialink account, which allows remote attackers to obtain administrative privileges by leveraging a...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 allows remote attackers to hijack the authentication of arbitrary users...

CVE-2015-5995

The CVE-2015-5995 issue involves Mediabridge Medialink MWN-WAPR300N (firmware ~5.07.50) and Tenda N3 Wireless N150 routers, where authentication can be bypassed by manipulating the HTTP Cookie header (e.g., Cookie: language-en; admin:language-en). The root cause is using unauthenticated cookie-ba...

CVE-2015-5994

CVE-2015-5994 affects Mediabridge Medialink MWN-WAPR300N routers running firmware 5.07.50, where default credentials admin/admin for the web management interface and medialink:password for the wireless network enable remote attackers within Wi‑Fi range to obtain administrative privileges. The iss...

CVE-2015-5995

Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 and Tenda N3 Wireless N150 devices allow remote attackers to obtain administrative access via a certain admin substring in an HTTP Cookie header...

CVE-2015-5996

CVE-2015-5996 affects Mediabridge Medialink Wireless-N Broadband Router MWN-WAPR300N (firmware 5.07.50). The vulnerability is Cross-Site Request Forgery (CSRF) in the web management interface, allowing an attacker to perform actions with the same permissions as a logged-in user, including potenti...

Mediabridge Medialink Wireless-N Broadband Router MWN-WAPR300N Security Bypass Vulnerability

Mediabridge Medialink Wireless-N Broadband Router MWN-WAPR300N is a wireless broadband router product. A security vulnerability exists in the Authorization feature of the Mediabridge Medialink Wireless-N Broadband Router MWN-WAPR300N, which allows a local attacker to bypass the Authorization...