16831 matches found
CVE-2025-41662
Rejected reason: CVE-2025-41662 is considered redundant or unnecessary and thus should be withdrawn. Instead, a new CVE CVE-2025-41687 has been reserved to better reflect the updated analysis...
PT-2025-25186 · Weidmueller · Ie-Sr-2Tx-Wl +2
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An unauthenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to a lack of Cross-Site Request Forgery CSRF protection in the Main Web...
Weidmueller Interface IE-SR-2TX-WL 跨站请求伪造漏洞
The Weidmueller Interface IE-SR-2TX-WL is an industrial security router from Weidmueller Interface, Germany. The Weidmueller Interface IE-SR-2TX-WL suffers from a cross-site request forgery vulnerability that stems from a lack of CSRF protection in the main web interface, which could allow an...
CVE-2025-40591
A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.5, RUGGEDCOM ROX MX5000RE All versions V2.16.5, RUGGEDCOM ROX RX1400 All versions V2.16.5, RUGGEDCOM ROX RX1500 All versions V2.16.5, RUGGEDCOM ROX RX1501 All versions V2.16.5, RUGGEDCOM ROX RX1510 All versions V2.16.5...
CVE-2025-40591
A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.5, RUGGEDCOM ROX MX5000RE All versions V2.16.5, RUGGEDCOM ROX RX1400 All versions V2.16.5, RUGGEDCOM ROX RX1500 All versions V2.16.5, RUGGEDCOM ROX RX1501 All versions V2.16.5, RUGGEDCOM ROX RX1510 All versions V2.16.5...
PT-2025-24682
Name of the Vulnerable Software and Affected Versions OctoPrint versions up to and including 1.11.1 Description The issue affects a web interface for controlling consumer 3D printers, allowing an attacker with the FILE UPLOAD permission to exfiltrate files from the host by moving them into the...
CVE-2025-30184
CyberData 011209 Intercom could allow an unauthenticated user access to the Web Interface through an alternate path...
CVE-2025-30184
CyberData 011209 Intercom could allow an unauthenticated user access to the Web Interface through an alternate path...
CVE-2025-30184 CyberData 011209 SIP Emergency Intercom Authentication Bypass Using an Alternate Path or Channel
CyberData 011209 Intercom could allow an unauthenticated user access to the Web Interface through an alternate path...
CVE-2025-30184 CyberData 011209 SIP Emergency Intercom Authentication Bypass Using an Alternate Path or Channel
CyberData 011209 Intercom could allow an unauthenticated user access to the Web Interface through an alternate path...
CVE-2025-30184
Summary (CVE-2025-30184) CyberData 011209 Intercom is vulnerable to an unauthenticated access to the Web Interface via an alternate path. Public disclosures across NVD, Red Hat, CNNVD, CVE list, and PT Security confirm an authentication bypass/vector against the Intercom’s web interface, with CVS...
Updated cockpit packages fix security vulnerability & bug
Mageia's internal bug: In the current version you can't login in the web interface with firefox or chromium-browser packaged by Mageia. This update fixes the issue, but it is reported that could need to reboot and clear cookies from your browser. A flaw was found in the cockpit package. This flaw...
CVE-2025-5871 Papendorf SOL Connect Center Web Interface missing authentication
A vulnerability was found in Papendorf SOL Connect Center 3.3.0.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Web Interface. The manipulation leads to missing authentication. The attack may be launched remotely. The exploit has been disclos...
CVE-2025-5871 Papendorf SOL Connect Center Web Interface missing authentication
A vulnerability was found in Papendorf SOL Connect Center 3.3.0.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Web Interface. The manipulation leads to missing authentication. The attack may be launched remotely. The exploit has been disclos...
CVE-2025-5870 TRENDnet TV-IP121W Web Interface setup.cgi improper authentication
A vulnerability has been found in TRENDnet TV-IP121W 1.1.1 Build 36 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/setup.cgi of the component Web Interface. The manipulation leads to improper authentication. The attack can be launched...
The vulnerability of the ping tool in the web interface of the microprogramming software for routing and switching platform RUGGEDCOM ROX series, MX (MX5000, MX5000RE) and RX (RX1400, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, and RX5000), allows a hacker to execute arbitrary code.
The vulnerability of the ping tool in the web interface of the microprogramming software for routing and switching platform RUGGEDCOM ROX models series MX MX5000, MX5000RE and RX RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, and RX5000 is related to the absence of a mechanism to...
The vulnerability of the ping tool in the web interface of the microprogramming software for routing and switching platform RUGGEDCOM ROX series, MX (MX5000, MX5000RE) and RX (RX1400, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, and RX5000), allows a hacker to execute arbitrary code.
The vulnerability of the ping tool in the web interface of the microprogramming software for routing and switching platform RUGGEDCOM ROX models series MX MX5000, MX5000RE and RX RX1400, RX1500, RX1501, RX1510, RX1511, RX1512, RX1524, RX1536, and RX5000 is related to the absence of a mechanism to...
TOTOLINK T10 安全漏洞
The TOTOLINK T10 is a wireless router from TOTOLINK. A buffer overflow vulnerability exists in TOTOLINK T10 version 4.1.8cu.5207, which affects the function setWiFiRepeaterCfg in the /cgi-bin/cstecgi.cgi file of the component's POST request handler.An attacker can exploit the vulnerability by...
TOTOLINK T10 安全漏洞
The TOTOLINK T10 is a wireless router manufactured by TOTOLINK. A buffer overflow vulnerability exists in TOTOLINK T10 version 4.1.8cu.5207, which affects the function setWiFiMeshName in the /cgi-bin/cstecgi.cgi file of the component's POST request handler.An attacker can exploit the vulnerabilit...
PT-2025-24417 · Unknown · Papendorf Sol Connect Center
Name of the Vulnerable Software and Affected Versions: Papendorf SOL Connect Center version 3.3.0.0 Description: A vulnerability was found in the Web Interface component, leading to missing authentication. This issue can be exploited remotely. The exploit has been disclosed to the public...