Lucene search
+L

7 matches found

Cvelist
Cvelist
added 2025/05/30 8:14 a.m.19 views

CVE-2025-4633 Default Credentials

Default credentials were present in the web portal for Airpointer 2.4.107-2, allowing an unauthenticated malicious actor to log in via the web portal...

6.5CVSS0.00221EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/30 12:0 a.m.8 views

PT-2025-23270

Name of the Vulnerable Software and Affected Versions: Airpointer version 2.4.107-2 Description: The issue concerns default credentials being present in the web portal, allowing an unauthenticated malicious actor to log in via the web portal. Recommendations: For Airpointer version 2.4.107-2,...

6.5CVSS6.5AI score0.00221EPSS
Exploits0References6
OSV
OSV
added 2025/02/10 7:15 p.m.4 views

CVE-2024-46431

Tenda W18E V16.01.0.81625 is vulnerable to Buffer Overflow. An attacker with access to the web management portal can exploit this vulnerability by sending specially crafted data to the delWewifiPic function...

8CVSS5.8AI score0.00463EPSS
Exploits1References1
OSV
OSV
added 2024/11/12 11:15 p.m.6 views

CVE-2021-27704

Appspace 6.2.4 is affected by Incorrect Access Control via the Appspace Web Portal password reset page...

6.5CVSS5.8AI score0.0039EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/11 12:0 a.m.5 views

PT-2023-26536 · Snow · Software License Manager

Name of the Vulnerable Software and Affected Versions: Snow Software license manager versions 8.0.0 through 9.30.1 Description: The issue is related to a blind SQL injection in a service running in the Snow Software license manager. This allows a logged-in user with high privileges to inject SQL...

7.2CVSS7.3AI score0.00461EPSS
Exploits0References5
OSV
OSV
added 2019/11/22 4:15 p.m.6 views

CVE-2019-3428

The version V6.01.03.01 of ZTE ZXCDN IAMWEB product is impacted by a configuration error vulnerability. An attacker could directly access the management portal in HTTP, resulting in users’ information leakage...

6.5CVSS6.6AI score0.00885EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2011/04/08 12:0 a.m.39 views

JVN#11424086: Password Vault Web Access vulnerable to cross-site scripting

Password Vault Web Access PVWA is a module in the Privileged Identity Management Suite that allows access via a web portal. PVWA contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the web browser of an user who is logged on. Solution Apply a patch Apply t...

4.3CVSS5.8AI score0.01053EPSS
Exploits0
Rows per page
Query Builder