Lucene search
K

55 matches found

Cvelist
Cvelist
added 2024/04/15 2:58 a.m.13 views

CVE-2024-3776 Netvision airPASS - Reflected XSS

The parameter used in the login page of Netvision airPASS is not properly filtered for user input. An unauthenticated remote attacker can insert JavaScript code to the parameter for Reflected Cross-site scripting attacks...

6.1CVSS6.5AI score0.00407EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/15 2:58 a.m.12 views

CVE-2024-3776 Netvision airPASS - Reflected XSS

The parameter used in the login page of Netvision airPASS is not properly filtered for user input. An unauthenticated remote attacker can insert JavaScript code to the parameter for Reflected Cross-site scripting attacks...

6.1CVSS6.8AI score0.00407EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/15 12:0 a.m.5 views

NETVISION INFORMATION airPASS 跨站脚本漏洞

NETVISION INFORMATION airPASS is a wireless network authentication management system from NETVISION INFORMATION. A cross-site scripting vulnerability exists in versions prior to NETVISION INFORMATION airPASS v2.9.0.20231006, which stems from a Reflected Cross-Site Scripting XSS vulnerability in t...

6.1CVSS5.3AI score0.00407EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.5 views

PT-2024-27733 · Netvision · Netvision Airpass

Name of the Vulnerable Software and Affected Versions: Netvision airPASS affected versions not specified Description: The issue concerns a reflected cross-site scripting attack. An unauthenticated remote attacker can insert JavaScript code into a parameter used in the login page, as it is not...

6.1CVSS6.1AI score0.00407EPSS
Exploits0References3
OSV
OSV
added 2024/01/15 3:15 a.m.3 views

CVE-2023-48383

NetVision Information airPASS has a path traversal vulnerability within its parameter in a specific URL. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and download arbitrary system files...

7.5CVSS5.9AI score0.0098EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/15 2:37 a.m.24 views

CVE-2023-48383 NetVision Information airPASS - Path Traversal

NetVision Information airPASS has a path traversal vulnerability within its parameter in a specific URL. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and download arbitrary system files...

7.5CVSS8AI score0.0098EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/01/14 12:0 a.m.5 views

PT-2024-13608 · Netvision +1 · Netvision +1

Name of the Vulnerable Software and Affected Versions: NetVision affected versions not specified Description: The issue is related to a path traversal vulnerability within a parameter in a specific URL of airPASS. This vulnerability can be exploited by an unauthenticated remote attacker to bypass...

7.5CVSS7.6AI score0.0098EPSS
Exploits0References4
OSV
OSV
added 2023/01/26 9:18 p.m.3 views

CVE-2023-0356

SOCOMEC MODULYS GP Netvision versions 7.20 and prior lack strong encryption for credentials on HTTP connections, which could result in threat actors obtaining sensitive information...

7.5CVSS7.2AI score0.00471EPSS
Exploits0References1
NVD
NVD
added 2023/01/26 9:18 p.m.25 views

CVE-2023-0356

SOCOMEC MODULYS GP Netvision versions 7.20 and prior lack strong encryption for credentials on HTTP connections, which could result in threat actors obtaining sensitive information...

7.5CVSS6.5AI score0.00471EPSS
Exploits0References1
Prion
Prion
added 2023/01/26 9:18 p.m.18 views

Information disclosure

SOCOMEC MODULYS GP Netvision versions 7.20 and prior lack strong encryption for credentials on HTTP connections, which could result in threat actors obtaining sensitive information...

5CVSS7.5AI score0.00471EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/01/24 6:40 p.m.49 views

CVE-2023-0356

CVE-2023-0356 affects SOCOMEC MODULYS GP Netvision firmware (versions up to 7.20). Root cause: weak encoding of credentials over HTTP connections (CWE-261), enabling potential disclosure of sensitive information. Affected product: MODULYS GP Netvision; vulnerability details are consistent across ...

7.5CVSS7.5AI score0.00471EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/01/24 6:40 p.m.34 views

CVE-2023-0356

SOCOMEC MODULYS GP Netvision versions 7.20 and prior lack strong encryption for credentials on HTTP connections, which could result in threat actors obtaining sensitive information...

5.7CVSS7.7AI score0.00471EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/01/24 12:0 a.m.4 views

PT-2023-16208 · Socomec · Socomec Modulys Gp Netvision

Name of the Vulnerable Software and Affected Versions: SOCOMEC MODULYS GP Netvision versions 7.20 and prior Description: The issue is related to weak encryption for credentials on HTTP connections, which could allow threat actors to obtain sensitive information. Recommendations: For SOCOMEC MODUL...

7.5CVSS7.2AI score0.00471EPSS
Exploits0References2
0day.today
0day.today
added 2010/07/28 12:0 a.m.23 views

Netvision V-1.0 RFI Vulnerability

Exploit for php platform in category web applications ================================= Netvision V-1.0 RFI Vulnerability ================================= sec-r1z.com , Pal-Li0ns.com , HacKTeach.org +===================================================================================+ ?Netvision...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2006/11/01 12:0 a.m.50 views

Cross Site Scripting (XSS) Vulnerability in iPlanet Messaging Server Messenger Express by "Sun"

·= Security Advisory =· Issue: Cross Site Scripting XSS Vulnerability in iPlanet Messaging Server Messenger Express by "Sun" Discovered Date: 25/09/2006 Author: Tal Argoni, LegendaryZion. talargoni at gmail.com Product Vendor: http://www.sun.com/ Details: iPlanet Messaging Server Messenger Expres...

Exploits0
Rows per page
Query Builder