10 matches found
EUVD-2021-32530
Malicious code in bioql PyPI...
CVE-2022-33119
NUUO Network Video Recorder NVRsolo v03.06.02 was discovered to contain a reflected cross-site scripting XSS vulnerability via login.php...
CVE-2022-33119
NUUO Network Video Recorder NVRsolo v03.06.02 was discovered to contain a reflected cross-site scripting XSS vulnerability via login.php...
CVE-2022-33119
NUUO Network Video Recorder NVRsolo v03.06.02 was discovered to contain a reflected cross-site scripting XSS vulnerability via login.php...
CVE-2021-45812
NUUO Network Video Recorder NVRsolo 3.9.1 is affected by a Cross Site Scripting XSS vulnerability. An attacker can steal the user's session by injecting malicious JavaScript codes which leads to session hijacking...
NUUO Network Video Recorder Firmware Arbitrary Command Execution Vulnerability
NUUO Network Video Recorder NVR is a network video recorder from NUUO, Taiwan, China. A security vulnerability exists in NUUO NVRs using firmware versions 1.7.x through 3.3.x. The vulnerability can be exploited by sending the handleloadconfig.php file to the handleloadconfig.php file. An attacker...
Code injection
NUUO Network Video Recorder Firmware 1.7.x through 3.3.x allows unauthenticated attackers to execute arbitrary commands via shell metacharacters to handleloadconfig.php...
CVE-2019-9653
CVE-2019-9653 affects NUUO Network Video Recorder Firmware 1.7.x–3.3.x. An unauthenticated attacker can execute arbitrary commands via shell metacharacters in the handle_load_config.php endpoint, enabling remote code execution. The vulnerability is illustrated by multiple sources (NVD, Red Hat, C...
CVE-2018-19864
NUUO NVRmini2 Network Video Recorder firmware through 3.9.1 allows remote attackers to execute arbitrary code or cause a denial of service buffer overflow, resulting in ability to read camera feeds or reconfigure the device...
NUUO NVR < 3.9.1 Multiple Vulnerabilities
NUUO Network Video Recorder NVR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nuuo:nuuo";...