Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.14 views

Cisco Wireless Lan Solution Engine ArchiveApplyDisplay.JSP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17604/info CiscoWorks Wireless LAN Solution Engine WLSE is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

7.1AI score
Exploits0
Cvelist
Cvelistadded 2007/10/12 1:0 a.m.15 views

CVE-2007-5382

The conversion utility for converting CiscoWorks Wireless LAN Solution Engine WLSE 4.1.91.0 and earlier to Cisco Wireless Control System WCS creates administrator accounts with default usernames and passwords, which allows remote attackers to gain privileges...

7AI score0.02467EPSS
Exploits0References6
seebug.org
seebug.orgadded 2007/10/12 12:0 a.m.18 views

Cisco无线控制系统默认管理口令漏洞

BUGTRAQ ID: 26000 Cisco无线控制系统(WCS)是用于管理和控制Cisco统一无线网络的轻量级接入点和无线LAN控制器的集中系统级应用。 WCS在完成转换以后没有正确处理默认的帐号口令,远程攻击者可能利用此漏洞获取非授权访问。 CiscoWorks无线LAN解决方案引擎(WLSE)用户可以使用Cisco提供的转换工具转换到Cisco无线控制系统(WCS),这个转换工具使用默认的凭据创建和使用管理帐号。由于在转换过程中对更改这些凭据没有任何要求,因此攻击者可以利用这些拥有默认凭据的帐号在转换后获得对WCS的完全管理控制。 Cisco Wireless Control...

6.9AI score
Exploits0
securityvulns
securityvulnsadded 2007/10/12 12:0 a.m.31 views

CiscoWorks Wireless LAN Solution Engine Cisco Wireless Control System Conversion Utility default password

Conversion utility adds default password...

3.7AI score
Exploits0References1Affected Software1
Prion
Prionadded 2007/03/16 9:19 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in 1 PreSearch.html and 2 PreSearch.class in Cisco Secure Access Control Server ACS, VPN Client, Unified Personal Communicator, MeetingPlace, Unified MeetingPlace, Unified MeetingPlace Express, CallManager, IP Communicator, Unified Video Advantage...

3.5CVSS6AI score0.00567EPSS
Exploits0References9Affected Software3
CVE
CVEadded 2007/03/16 9:0 p.m.62 views

CVE-2007-1467

The CVE-2007-1467 entry describes multiple cross-site scripting (XSS) vulnerabilities affecting Cisco Secure Access Control Server and related Cisco products. The root issue is insufficient input filtering in the search form used by PreSearch.html and PreSearch.class, allowing remote attackers to...

3.5CVSS5.7AI score0.00567EPSS
Exploits0References9Affected Software18
securityvulns
securityvulnsadded 2006/04/20 12:0 a.m.47 views

Re: Multiple vulnerabilities in Linux based Cisco products

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 This is Cisco PSIRT's response to the privilege escalation vulnerability independently announced by Adam Pointon of Assurance.com.au and Mathieu Pepin of Axen Consulting. We would like to thank both Adam and Mathieu for bringing this issue to our...

0.2AI score
Exploits0
CERT
CERTadded 2004/04/07 12:0 a.m.19 views

Cisco WLSE and HSE devices contain hardcoded username and password

Overview A default account with a common username and password exists in two Cisco products. An attacker with knowledge of this account information can compromise any of these devices on the network. Description A default account with a known, fixed username and password combination exists in som...

6.9AI score
Exploits0References1
Rows per page
Query Builder