Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-4853

Malware in sbrugna...

5CVSS6.3AI score0.03548EPSS
Exploits1References10
NVD
NVD
added 2008/11/01 6:0 a.m.14 views

CVE-2008-4876

Cross-site scripting XSS vulnerability in the web server component in Philips Electronics VOIP841 DECT Phone with firmware 1.0.4.50 and 1.0.4.80 allows remote attackers to inject arbitrary web script or HTML via the request URL, which is not properly handled in a 404 web error page...

4.3CVSS5.7AI score0.01803EPSS
Exploits0References6
NVD
NVD
added 2008/11/01 6:0 a.m.18 views

CVE-2008-4874

The web component in Philips Electronics VOIP841 DECT Phone with firmware 1.0.4.50 and 1.0.4.80 has a back door "service" account with "service" as its password, which makes it easier for remote attackers to obtain access...

5CVSS6.5AI score0.03548EPSS
Exploits1References9
Prion
Prion
added 2008/11/01 6:0 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in the web server component in Philips Electronics VOIP841 DECT Phone with firmware 1.0.4.50 and 1.0.4.80 allows remote attackers to inject arbitrary web script or HTML via the request URL, which is not properly handled in a 404 web error page...

4.3CVSS6.2AI score0.01803EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2008/11/01 6:0 a.m.13 views

Directory traversal

Directory traversal vulnerability in the web server in Philips Electronics VOIP841 DECT Phone with firmware 1.0.4.50 and 1.0.4.80 allows remote authenticated users to read arbitrary files via a .. dot dot in a GET request. NOTE: this can be leveraged with CVE-2008-4874 for unauthenticated access ...

6.8CVSS6.6AI score0.03548EPSS
Exploits1References8Affected Software1
CVE
CVE
added 2008/10/31 11:0 p.m.43 views

CVE-2008-4875

Philips Electronics VOIP841 DECT Phone web server (firmware 1.0.4.50 and 1.0.4.80) is subject to a directory traversal vulnerability via a .. in GET requests, allowing remote authenticated users to read arbitrary files. The issue is documented as CVE-2008-4875. It is noted that this can be levera...

6.8CVSS6.4AI score0.03136EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2008/10/31 11:0 p.m.24 views

CVE-2008-4876

Cross-site scripting XSS vulnerability in the web server component in Philips Electronics VOIP841 DECT Phone with firmware 1.0.4.50 and 1.0.4.80 allows remote attackers to inject arbitrary web script or HTML via the request URL, which is not properly handled in a 404 web error page...

5.7AI score0.01803EPSS
Exploits0References6
Cvelist
Cvelist
added 2008/10/31 11:0 p.m.26 views

CVE-2008-4874

The web component in Philips Electronics VOIP841 DECT Phone with firmware 1.0.4.50 and 1.0.4.80 has a back door "service" account with "service" as its password, which makes it easier for remote attackers to obtain access...

6.5AI score0.03548EPSS
Exploits1References9
Rows per page
Query Builder