CVE-2025-15355

CVE-2025-15355 describes a reflected cross-site scripting vulnerability in ISOinsight (NetVision Information). Unauthenticated remote attackers can lure users via phishing to trigger arbitrary JavaScript execution in the victim’s browser. The Red Hat/CIRCL/NVD entries align on the same descriptio...

CVE-2025-15355 NetVision Information｜ISOinsight - Reflected Cross-site Scripting

ISOinsight developed by NetVision Information has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks...

NetVision Information ISOinsight 跨站脚本漏洞

NetVision Information ISOinsight is an operations and maintenance management platform from China-based NetVision Information. NetVision Information ISOinsight suffers from a cross-site scripting vulnerability that stems from the presence of reflective cross-site scripting, which could allow an...

PT-2025-53852

Name of the Vulnerable Software and Affected Versions ISOinsight versions affected versions not specified Description ISOinsight, developed by NetVision Information, exhibits a Reflected Cross-site Scripting issue. This allows attackers who do not need to be logged in to execute arbitrary...

EUVD-2024-32348

Malicious code in bioql PyPI...

EUVD-2025-2020

Malicious code in bioql PyPI...

CVE-2023-48383

NetVision Information airPASS has a path traversal vulnerability within its parameter in a specific URL. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and download arbitrary system files...

CVE-2025-4560

The ISOinsight from Netvision has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access certain system functions. These functions include viewing the administrator list, viewing and editing IP settings, and uploading files...

CVE-2025-4560 Netvision ISOinsight - Missing Authentication

The ISOinsight from Netvision has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access certain system functions. These functions include viewing the administrator list, viewing and editing IP settings, and uploading files...

CVE-2025-4560

CVE-2025-4560 relates to Netvision ISOinsight, described as a Missing Authentication vulnerability that allows unauthenticated remote attackers to access specific system functions. The vulnerability affects Netvision ISOinsight and enables viewing the administrator list, viewing and editing IP se...

CVE-2025-4560 Netvision ISOinsight - Missing Authentication

The ISOinsight from Netvision has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access certain system functions. These functions include viewing the administrator list, viewing and editing IP settings, and uploading files...

CVE-2025-4559

The ISOinsight from Netvision has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

CVE-2025-4559 Netvision ISOinsight - SQL Injection

The ISOinsight from Netvision has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

CVE-2025-4559

CVE-2025-4559 affects Netvision ISOinsight. Multiple sources describe a SQL injection vulnerability allowing unauthenticated remote attackers to read, modify, and delete database contents. The provided documents do not specify affected versions or a confirmed patch, and one PTSecurity entry notes...

CVE-2025-4559 Netvision ISOinsight - SQL Injection

The ISOinsight from Netvision has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

PT-2025-20684 · Netvision · Isoinsight

Name of the Vulnerable Software and Affected Versions: ISOinsight from Netvision affected versions not specified Description: The issue allows unauthenticated remote attackers to access certain system functions, including viewing the administrator list, viewing and editing IP settings, and...

NetVision Information ISOinsight 安全漏洞

NetVision Information ISOinsight is an operations and maintenance management platform from China Zhengbang Information NetVision Information. A security vulnerability exists in NetVision Information ISOinsight, which stems from a SQL injection vulnerability that could lead to the execution of...

PT-2025-20683 · Netvision · Isoinsight

Name of the Vulnerable Software and Affected Versions: ISOinsight from Netvision affected versions not specified Description: The issue allows unauthenticated remote attackers to inject arbitrary SQL commands, enabling them to read, modify, and delete database contents. This is a result of a SQL...

NetVision Information ISOinsight 安全漏洞

NetVision Information ISOinsight is an operations and maintenance management platform from China-based Zhengbang Information NetVision Information. A security vulnerability exists in NetVision Information ISOinsight that stems from a lack of authentication, which could allow an unauthenticated,...

CVE-2025-1145

NetVision Information ISOinsight has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript code in the user's browser through phishing techniques...