Lucene search
K

4 matches found

NVD
NVD
added 2026/01/16 9:16 a.m.5 views

CVE-2026-20894

Cross-site scripting vulnerability exists in multiple Network Cameras TRIFORA 3 series provided by TOA Corporation. If an attacking administrator configures the affected product with some malicious input, an arbitrary script may be executed on the web browser of a victim administrator who accesse...

4.8CVSS0.00202EPSS
Exploits0References2
CVE
CVE
added 2026/01/16 8:16 a.m.11 views

CVE-2026-20894

CVE-2026-20894 affects TOA Corporation’s Network Cameras TRIFORA 3 series. The vulnerability is a Cross-site scripting (CWE-79) in the web interface, triggered when an attacking administrator submits malicious input on the setting screen. A logged-in user with high privileges can cause a victim a...

4.8CVSS6.2AI score0.00202EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/16 8:16 a.m.3 views

CVE-2026-20759

OS Command Injection vulnerability exists in multiple Network Cameras TRIFORA 3 series provided by TOA Corporation, which may allow a logged-in user with the low"monitoring user" or higher privilege to execute an arbitrary OS command...

8.8CVSS8.2AI score0.01503EPSS
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/01/16 6:6 a.m.6 views

Multiple Vulnerabilities in TOA Network Cameras TRIFORA 3 series

Overview Network Cameras TRIFORA 3 series provided by TOA Corporation contain multiple vulnerabilities listed below. OS command injection CWE-78 - CVE-2026-20759 Cross-site scripting CWE-79 - CVE-2026-20894 Path traversal CWE-22 - CVE-2026-22876 Shogo Iyota of GMO Cybersecurity by Ierae reported...

8.8CVSS7.5AI score0.01503EPSS
Exploits0References9
Rows per page
Query Builder