14 matches found
CVE-2026-4289
A security vulnerability has been detected in Tiandy Easy7 Integrated Management Platform up to 7.17.0. This affects an unknown function of the file /rest/preSetTemplate/getRecByTemplateId. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The explo...
The vulnerability of the microprogrammed software of the BUFFALO VR-S1000 routers, related to the use of pre-installed user credentials, allows a intruder to obtain access to the password of any user.
The vulnerability of the BUFFALO VR-S1000 router’s microprogramming software is related to the use of pre-set login credentials. Exploiting this vulnerability could allow a hacker to gain access to the password of any user...
The vulnerability of the SCADA system SCADA Data Gateway (SDG) arises from the use of pre-set account data, allowing an intruder to gain unauthorized access to protected information.
The vulnerability of the SCADA system SCADA Data Gateway SDG is related to the use of pre-set credentials. Exploiting this vulnerability can allow an intruder, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the SCADA system “SKADA-NEV” is related to the use of pre-set account data, which allows a intruder to increase their privileges within the system.
The vulnerability of the SCADA system “SKADA-NEV” is related to the use of pre-set account data. Exploiting this vulnerability can allow a malicious actor to enhance their privileges within the system...
The vulnerability of NETGEAR’s Wi-Fi router software, including models RBK352, RBR350, and RBS350, arises from the use of pre-set credentials. This allows unauthorized individuals to gain unauthorized access to protected information.
The vulnerability of NETGEAR Wi-Fi router software, including models RBK352, RBR350, and RBS350, stems from the use of pre-set login credentials. Exploiting this vulnerability allows a malicious actor to gain unauthorized access to protected information from a remote location...
Netgear Nighthawk R6700 Command Injection Vulnerability
The Netgear Nighthawk R6700 is a wireless router from Netgear, Inc. A command injection vulnerability exists in the Netgear Nighthawk R6700, which stems from the fact that the product supports update checking via the soap interface and can be injected with a pre-set value. No details of the...
The vulnerability of the EKOM-3000 data collection and transmission device, related to the use of pre-set account data, allows a perpetrator to gain access to the device.
The vulnerability of the ECOM-3000 data collection and transmission device is related to the use of pre-set credentials. Exploiting this vulnerability could allow a remote attacker to gain access to the device...
The vulnerability of Microprogrammed Software for Korenix switches, related to the use of pre-installed account data, allows a perpetrator to gain access to the device.
The vulnerability of Microprogrammed Software for Korenix switches relates to the use of pre-set credentials. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to the device...
The vulnerability of Microprogrammed Software for Korenix switches, related to the use of pre-installed account data, allows a perpetrator to gain access to the device.
The vulnerability of Microprogrammed Software for Korenix switches relates to the use of pre-set credentials. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to the device...
The vulnerability of the ALEOS software, a wireless modem from Sierra Wireless, allows a hacker to gain access to the system by exploiting pre-installed credentials.
The vulnerability of the ALEOS software for the Sierra Wireless AirLink GX 440 wireless modem lies in the use of pre-set login credentials. Exploiting this vulnerability allows a malicious actor to gain access to the system with privileges of one of the users: admin, rauser, sconsole, or user, by...
Back-End CMS <= 0.7.2.1 (jpcache.php) Remote Include Vulnerability
No description provided by source. Federico Fazzi, [email protected] Back-end = 0.7.2.1 jpcache.php Remote command execution 08/06/2006 1:04 Bug: jpcache.php: line 40 --- $includedir = $PSL'classdir' . "/jpcache"; --- Proof of concept: Back-end have a default path pre-set on jpcache.php, and...
Debian DSA-554-1 : sendmail - pre-set password
Hugo Espuny discovered a problem in sendmail, a commonly used program to deliver electronic mail. When installing 'sasl-bin' to use sasl in connection with sendmail, the sendmail configuration script use fixed user/pass information to initialise the sasl database. Any spammer with Debian systems...
[SECURITY] [DSA 554-1] New sendmail packages fix potential open relay
-------------------------------------------------------------------------- Debian Security Advisory DSA 554-1 [email protected] http://www.debian.org/security/ Martin Schulze September 27th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 554-1] New sendmail packages fix potential open relay
-------------------------------------------------------------------------- Debian Security Advisory DSA 554-1 [email protected] http://www.debian.org/security/ Martin Schulze September 27th, 2004 http://www.debian.org/security/faq -...