Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

Prion
Prionadded 2018/03/07 2:29 a.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0RC3 build r6594 allows remote attackers to inject arbitrary web script or HTML via vectors involving home.asp...

4.3CVSS6AI score0.0093EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2018/03/07 2:29 a.m.18 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0RC3 build r6594 allows remote attackers to hijack the authentication of unspecified users for requests that enable SNMP on the remote device via vectors involving goform/setSnmp...

6.8CVSS7AI score0.00695EPSS
Exploits1References1Affected Software1
NVD
NVDadded 2018/03/07 2:29 a.m.20 views

CVE-2017-11649

Cross-site request forgery CSRF vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0RC3 build r6594 allows remote attackers to hijack the authentication of unspecified users for requests that enable SNMP on the remote device via vectors involving goform/setSnmp...

8.8CVSS7.1AI score0.00695EPSS
Exploits1References1
OSV
OSVadded 2018/03/07 2:29 a.m.2 views

CVE-2017-11649

Cross-site request forgery CSRF vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0RC3 build r6594 allows remote attackers to hijack the authentication of unspecified users for requests that enable SNMP on the remote device via vectors involving goform/setSnmp...

8.8CVSS5.9AI score0.00695EPSS
Exploits1References1
NVD
NVDadded 2018/03/07 2:29 a.m.17 views

CVE-2017-11650

Cross-site scripting XSS vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0RC3 build r6594 allows remote attackers to inject arbitrary web script or HTML via vectors involving home.asp...

6.1CVSS6AI score0.0093EPSS
Exploits1References1
CNVD
CNVDadded 2018/03/07 12:0 a.m.1 views

DrayTek Vigor AP910C Cross-Site Request Forgery Vulnerability

DrayTek Vigor AP910C devices is a wireless router product with firewall function from DrayTek. A cross-site request forgery vulnerability exists in DrayTek Vigor AP910C devices using firmware version 1.2.0RC3 build r6594. A remote attacker could exploit the vulnerability to open SNMP on a remote...

8.8CVSS6.9AI score0.00695EPSS
Exploits1References1
CNVD
CNVDadded 2018/03/07 12:0 a.m.1 views

DrayTek Vigor AP910C Cross-Site Scripting Vulnerability

DrayTek Vigor AP910C devices is a wireless router product with firewall function from DrayTek. A cross-site request forgery vulnerability exists in DrayTek Vigor AP910C devices using firmware version 1.2.0RC3 build r6594. A remote attacker can exploit this vulnerability to inject arbitrary web...

6.1CVSS6.8AI score0.0093EPSS
Exploits1References1
CVE
CVEadded 2018/03/06 10:0 p.m.51 views

CVE-2017-11649

Affected product: DrayTek Vigor AP910C devices with firmware 1.2.0_RC3 build r6594. Vulnerability: Cross-site request forgery (CSRF) that lets an attacker hijack the authentication of an unspecified user to enable SNMP via requests to goform/setSnmp. Impact (as stated): enables SNMP on the remote...

8.8CVSS7AI score0.00695EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2018/03/06 10:0 p.m.40 views

CVE-2017-11650

CVE-2017-11650 affects DrayTek Vigor AP910C devices running firmware 1.2.0_RC3 build r6594. The described vulnerability is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML via vectors involving home.asp. Exploitation details beyond the vulnerab...

6.1CVSS5.9AI score0.0093EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2018/03/06 10:0 p.m.19 views

CVE-2017-11649

Cross-site request forgery CSRF vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0RC3 build r6594 allows remote attackers to hijack the authentication of unspecified users for requests that enable SNMP on the remote device via vectors involving goform/setSnmp...

7.3AI score0.00695EPSS
Exploits1References1
Cvelist
Cvelistadded 2018/03/06 10:0 p.m.17 views

CVE-2017-11650

Cross-site scripting XSS vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0RC3 build r6594 allows remote attackers to inject arbitrary web script or HTML via vectors involving home.asp...

6AI score0.0093EPSS
Exploits1References1
Rows per page
Query Builder