EUVD-2020-24756

Malware in sbrugna...

CVE-2025-27419

CVE-2025-27419 affects WeGIA (an open-source Web Manager for institutions). The issue is a Denial of Service caused by aggressive spidering through recursive crawling of dynamically generated URLs, allowing unauthenticated users to render the server unresponsive. The root cause is improper handli...

D-Link D-View 安全漏洞

D-Link D-View is a Web-based design network device management software from China AUO D-Link. A trust management issue vulnerability exists in D-Link D-View8, which stems from the use of hard-coded encryption keys, and can be exploited by an attacker to bypass authentication on the system...

CVE-2020-3475 Cisco IOS XE Software Web Management Framework Vulnerabilities

Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to gain unauthorized read access to sensitive data or cause the web management software to hang or crash, resulting in a denial of service DoS...

Design/Logic Flaw

A vulnerability in the role-based access control RBAC functionality of the web management software of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker to access resources that they should not be able to access and perform actions that they should not be able to...

CVE-2020-3485 Cisco Vision Dynamic Signage Director Role-Based Access Control Vulnerability

A vulnerability in the role-based access control RBAC functionality of the web management software of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker to access resources that they should not be able to access and perform actions that they should not be able to...

CVE-2020-3485

CVE-2020-3485 describes a vulnerability in the web management software of Cisco Vision Dynamic Signage Director’s RBAC. The issue arises from improper handling of RBAC in the web interface, enabling an authenticated, remote attacker to view and delete screen content they should not access via a c...

CVE-2020-3485 Cisco Vision Dynamic Signage Director Role-Based Access Control Vulnerability

A vulnerability in the role-based access control RBAC functionality of the web management software of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker to access resources that they should not be able to access and perform actions that they should not be able to...

CVE-2020-3229

A vulnerability in Role Based Access Control RBAC functionality of Cisco IOS XE Web Management Software could allow a Read-Only authenticated, remote attacker to execute commands or configuration changes as an Admin user. The vulnerability is due to incorrect handling of RBAC for the administrati...

CVE-2020-3229

CVE-2020-3229 affects Cisco IOS XE Web UI RBAC: an incorrect RBAC handling in the admin GUI may allow a Read-Only authenticated attacker to execute commands or configuration changes as Admin by sending a modified HTTP request. Root cause: RBAC handling flaw in the Web UI. Affected product family:...

Cisco IOS XE Software Web UI Privilege Escalation Vulnerability

A vulnerability in Role Based Access Control RBAC functionality of Cisco IOS XE Web Management Software could allow a Read-Only authenticated, remote attacker to execute commands or configuration changes as an Admin user. The vulnerability is due to incorrect handling of RBAC for the administrati...

Compaq Web Managment spoofed certificate unauthorized access

User can upload his certificate to server for getting unauthorized access...