39 matches found
CVE-2019-20070
On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi aka the Keyword field of the URL Blocking Configuration...
CVE-2019-20074
On Netis DL4323 devices, any user role can view sensitive information, such as a user password or the FTP password, via the form2saveConf.cgi page...
CVE-2019-20071
On Netis DL4323 devices, CSRF exists via form2logaction.cgi to delete all logs...
CVE-2019-20075
On Netis DL4323 devices, pingrttv6.html has XSS Ping6 Diagnostic...
EUVD-2019-10630
Malware in sbrugna...
EUVD-2019-10632
Malware in sbrugna...
EUVD-2019-10626
Malware in sbrugna...
EUVD-2019-10628
Malware in sbrugna...
EUVD-2019-10631
Malware in sbrugna...
EUVD-2019-10627
Malware in sbrugna...
EUVD-2019-10629
Malware in sbrugna...
CVE-2019-20076
On Netis DL4323 devices, XSS exists via the form2Ddns.cgi username parameter DynDns settings of the Dynamic DNS Configuration...
CVE-2019-20073
On Netis DL4323 devices, XSS exists via the form2userconfig.cgi username parameter User Account Configuration...
CVE-2019-20072
On Netis DL4323 devices, XSS exists via the form2Ddns.cgi hostname parameter Dynamic DNS Configuration...
VulnCheck KEV: CVE-2019-20074
On Netis DL4323 devices, any user role can view sensitive information, such as a user password or the FTP password, via the form2saveConf.cgi page...
CVE-2019-20073
On Netis DL4323 devices, XSS exists via the form2userconfig.cgi username parameter User Account Configuration...
CVE-2019-20071
On Netis DL4323 devices, CSRF exists via form2logaction.cgi to delete all logs...
CVE-2019-20074
On Netis DL4323 devices, any user role can view sensitive information, such as a user password or the FTP password, via the form2saveConf.cgi page...
CVE-2019-20070
On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi aka the Keyword field of the URL Blocking Configuration...
Default credentials
On Netis DL4323 devices, any user role can view sensitive information, such as a user password or the FTP password, via the form2saveConf.cgi page...