Lucene search
K

17 matches found

Nuclei
Nuclei
added 16 hours ago9 views

Karel IP Phone IP1211 Web Management Panel - Local File Inclusion

Karel IP Phone IP1211 Web Management Panel is vulnerable to local file inclusion and can allow remote attackers to access arbitrary files stored on the remote device via the 'cgiServer.exx' endpoint and the 'page' parameter. id: CVE-2025-34023 info: name: Karel IP Phone IP1211 Web Management Pane...

8.5CVSS6.1AI score0.01409EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.9 views

Acer M6E 安全漏洞

The Acer M6E is a portable 5G mobile hotspot device from Acer, a company based in Taiwan, China. The Acer M6E has a security vulnerability. This vulnerability stems from the fact that the web management panel is widely bound to the public IPv6 address space at port :::8080, with no default firewa...

6.9CVSS5.3AI score0.00234EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-5008

Malware in sbrugna...

4.3CVSS6.4AI score0.01666EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-18777

Malicious code in bioql PyPI...

8.5CVSS6.6AI score0.01409EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/09/10 12:0 a.m.5 views

AxxonSoft AxxonOne 安全漏洞

AxxonSoft AxxonOne is a video surveillance and security management software from AxxonSoft Ireland. A security vulnerability exists in AxxonSoft AxxonOne versions prior to 2.0.3, which stems from insufficient expiration of the Web Management Panel session, which may result in privilege retention...

8.1CVSS6.7AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/23 8:39 a.m.7 views

CVE-2025-34023

A path traversal vulnerability exists in the Karel IP1211 IP Phone's web management panel. The /cgi-bin/cgiServer.exx endpoint fails to properly sanitize user input to the page parameter, allowing remote authenticated attackers to access arbitrary files on the underlying system by using crafted...

8.5CVSS6.8AI score0.01409EPSS
Exploits0References1
NVD
NVD
added 2025/06/20 7:15 p.m.13 views

CVE-2025-34023

A path traversal vulnerability exists in the Karel IP1211 IP Phone's web management panel. The /cgi-bin/cgiServer.exx endpoint fails to properly sanitize user input to the page parameter, allowing remote authenticated attackers to access arbitrary files on the underlying system by using crafted...

8.5CVSS0.01409EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/06/20 6:37 p.m.10 views

CVE-2025-34023 Karel IP Phone IP1211 Path Traversal

A path traversal vulnerability exists in the Karel IP1211 IP Phone's web management panel. The /cgi-bin/cgiServer.exx endpoint fails to properly sanitize user input to the page parameter, allowing remote authenticated attackers to access arbitrary files on the underlying system by using crafted...

8.5CVSS0.01409EPSS
Exploits0References4
CVE
CVE
added 2025/06/20 6:37 p.m.22 views

CVE-2025-34023

CVE-2025-34023 affects the Karel IP1211 IP Phone, specifically the web management panel. The vulnerability is a path traversal in the "/cgi-bin/cgiServer.exx" endpoint where the page parameter is not sanitized, allowing remote authenticated attackers to access arbitrary files on the device. Explo...

8.5CVSS6.4AI score0.01409EPSS
In wildExploits0References4
Vulnrichment
Vulnrichment
added 2025/06/20 6:37 p.m.3 views

CVE-2025-34023 Karel IP Phone IP1211 Path Traversal

A path traversal vulnerability exists in the Karel IP1211 IP Phone's web management panel. The /cgi-bin/cgiServer.exx endpoint fails to properly sanitize user input to the page parameter, allowing remote authenticated attackers to access arbitrary files on the underlying system by using crafted...

8.5CVSS6.4AI score0.01409EPSS
Exploits0References4
CNVD
CNVD
added 2021/03/11 12:0 a.m.8 views

NETGEAR JGS516PE/GS116Ev2 Integer Overflow Vulnerability

The NETGEAR JGS516PE/GS116Ev2 is a 16-port Gigabit Smart Managed Plus switch. An integer overflow vulnerability exists in the Web Management Panel of the NETGEAR JGS516PE/GS116Ev2 version 2.6.0.43. An attacker could exploit this vulnerability to cause a denial of service...

6.8CVSS6.9AI score0.00418EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/03/10 12:0 a.m.7 views

Netgear NETGEAR JGS516PE 输入验证错误漏洞

The NETGEAR JGS516PE/GS116Ev2 is a 16-port Gigabit Smart Managed Plus switch. An integer overflow vulnerability exists in the Web Management Panel of the NETGEAR JGS516PE/GS116Ev2 version 2.6.0.43. An attacker could exploit this vulnerability to cause a denial of service...

6.8CVSS5.8AI score0.00418EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2020/10/07 12:0 a.m.564 views

Karel IP Phone IP1211 Web Management Panel Directory Traversal

Exploit Title: Karel IP Phone IP1211 Web Management Panel - Directory Traversal Exploit Author: Berat Gokberk ISLER Date: 2020-09-01 CVE: N/A Type: Webapps Vendor Homepage: https://www.karel.com.tr/urun-cozum/ip1211-ip-telefon Version: IP1211 Details Directory traversal vulnerability on the Karel...

0.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.26 views

LevelOne WBR3404TX Broadband Router RC Parameter Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/25738/info The LevelOne WBR3404TX Broadband Router is prone to multiple cross-site scripting vulnerabilities because the software fails to sufficiently sanitize user-supplied input. These issues occurs in the web manageme...

7.1AI score
Exploits0
CVE
CVE
added 2007/09/21 6:0 p.m.33 views

CVE-2007-5027

CVE-2007-5027 involves multiple XSS vulnerabilities in the web management panel (cgi-bin/ddns) of the WBR3404TX broadband router with firmware R1.94p0vTIG. The flaws allow remote attackers to inject arbitrary JavaScript/HTML via the DD or DU parameters. The provided documents confirm the affected...

4.3CVSS5.9AI score0.01666EPSS
Exploits0References5Affected Software1
securityvulns
securityvulns
added 2007/09/19 12:0 a.m.43 views

WBR3404TX Broadband Router XSS

I.Overview Current firmware version is R1.94p0vTIG the latest. WBR3404TX Broadband Router Web Management II.Description http://routeraddress/cgi-bin/ddns?RC=40&DG0=x&DP=D&DD=223E3Cscript3Ealert'xss20detected!';3C/script3E3Ctext20id=22&DU=&DW=...

1.6AI score
Exploits0
exploitpack
exploitpack
added 2007/09/19 12:0 a.m.18 views

LevelOne WBR3404TX Broadband Router - RC Cross-Site Scripting

LevelOne WBR3404TX Broadband Router - RC Cross-Site Scripting source: https://www.securityfocus.com/bid/25738/info The LevelOne WBR3404TX Broadband Router is prone to multiple cross-site scripting vulnerabilities because the software fails to sufficiently sanitize user-supplied input. These issue...

6.8AI score
Exploits0
Rows per page
Query Builder