Lucene search
K

31 matches found

Nuclei
Nuclei
added yesterday59 views

Cisco Linksys WVC54GCA 1.00R22/1.00R24 - Local File Inclusion

Cisco Linksys WVC54GCA 1.00R22/1.00R24 is susceptible to local file inclusion in adm/file.cgi because it allows remote attackers to read arbitrary files via a %2e. encoded dot dot or an absolute pathname in the nextfile parameter. id: CVE-2009-1558 info: name: Cisco Linksys WVC54GCA 1.00R22/1.00R...

7.8CVSS6AI score0.28806EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-1555

Malware in sbrugna...

7.8CVSS6.4AI score0.01532EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-1552

Malware in sbrugna...

3.5CVSS6.4AI score0.00924EPSS
Exploits1References5
Prion
Prion
added 2009/05/06 4:30 p.m.14 views

Code injection

The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 stores passwords and wireless-network keys in cleartext in 1 passwd.htm and 2 Wsecurity.htm, which allows remote attackers to obtain sensitive information by reading the HTML source code...

7.8CVSS6.7AI score0.01631EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2009/05/06 4:30 p.m.19 views

CVE-2009-1555

The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 sends configuration data in response to a Setup Wizard remote-management command, which allows remote attackers to obtain sensitive information such as passwords by reading the SetupWizard.exe process memory, a...

5CVSS7.4AI score0.01324EPSS
Exploits1References4
NVD
NVD
added 2009/05/06 4:30 p.m.31 views

CVE-2009-1558

Directory traversal vulnerability in adm/file.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote attackers to read arbitrary files via a %2e. encoded dot dot or an absolute pathname in the nextfile parameter...

7.8CVSS6.8AI score0.28806EPSS
Exploits1References4
Prion
Prion
added 2009/05/06 4:30 p.m.22 views

Directory traversal

Directory traversal vulnerability in adm/file.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote attackers to read arbitrary files via a %2e. encoded dot dot or an absolute pathname in the nextfile parameter...

7.8CVSS7.3AI score0.28806EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2009/05/06 4:30 p.m.16 views

CVE-2009-1556

img/main.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote authenticated users to read arbitrary files in img/ via a filename in the nextfile parameter, as demonstrated by reading .htpasswd to obtain the admin password, a different vulnerabili...

3.5CVSS6.2AI score0.00924EPSS
Exploits1References4
Prion
Prion
added 2009/05/06 4:30 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allow remote attackers to inject arbitrary web script or HTML via the nextfile parameter to 1 main.cgi, 2 img/main.cgi, or 3 adm/file.cgi; or 4 the thisfile...

4.3CVSS6.2AI score0.07469EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2009/05/06 4:30 p.m.20 views

CVE-2009-1557

Multiple cross-site scripting XSS vulnerabilities on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allow remote attackers to inject arbitrary web script or HTML via the nextfile parameter to 1 main.cgi, 2 img/main.cgi, or 3 adm/file.cgi; or 4 the thisfile...

4.3CVSS5.9AI score0.07469EPSS
Exploits1References5
NVD
NVD
added 2009/05/06 4:30 p.m.14 views

CVE-2009-1559

Absolute path traversal vulnerability in adm/file.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R24 and possibly 1.00R22 allows remote attackers to read arbitrary files via an absolute pathname in the thisfile parameter. NOTE: traversal via a .. dot dot is probably als...

7.8CVSS6.8AI score0.01532EPSS
Exploits1References4
Prion
Prion
added 2009/05/06 4:30 p.m.15 views

Memory corruption

The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 sends configuration data in response to a Setup Wizard remote-management command, which allows remote attackers to obtain sensitive information such as passwords by reading the SetupWizard.exe process memory, a...

5CVSS6.6AI score0.03293EPSS
Exploits2References4Affected Software1
Prion
Prion
added 2009/05/06 4:30 p.m.15 views

Design/Logic Flaw

img/main.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote authenticated users to read arbitrary files in img/ via a filename in the nextfile parameter, as demonstrated by reading .htpasswd to obtain the admin password, a different vulnerabili...

3.5CVSS6.7AI score0.07739EPSS
Exploits2References4Affected Software1
NVD
NVD
added 2009/05/06 4:30 p.m.19 views

CVE-2009-1560

The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 stores passwords and wireless-network keys in cleartext in 1 passwd.htm and 2 Wsecurity.htm, which allows remote attackers to obtain sensitive information by reading the HTML source code...

7.8CVSS6.2AI score0.01631EPSS
Exploits1References3
Cvelist
Cvelist
added 2009/05/06 4:0 p.m.21 views

CVE-2009-1555

The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 sends configuration data in response to a Setup Wizard remote-management command, which allows remote attackers to obtain sensitive information such as passwords by reading the SetupWizard.exe process memory, a...

7.4AI score0.01324EPSS
Exploits1References4
CVE
CVE
added 2009/05/06 4:0 p.m.36 views

CVE-2009-1560

The CVE concerns the Cisco Linksys WVC54GCA wireless video camera. Affected firmware versions 1.00R22 and 1.00R24 store passwords and wireless-network keys in cleartext within HTML pages pass_wd.htm and Wsecurity.htm, enabling remote attackers to read sensitive data by viewing the HTML source. Th...

7.8CVSS6.4AI score0.01631EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2009/05/06 4:0 p.m.27 views

CVE-2009-1556

img/main.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote authenticated users to read arbitrary files in img/ via a filename in the nextfile parameter, as demonstrated by reading .htpasswd to obtain the admin password, a different vulnerabili...

6.2AI score0.00924EPSS
Exploits1References4
Cvelist
Cvelist
added 2009/05/06 4:0 p.m.19 views

CVE-2009-1557

Multiple cross-site scripting XSS vulnerabilities on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allow remote attackers to inject arbitrary web script or HTML via the nextfile parameter to 1 main.cgi, 2 img/main.cgi, or 3 adm/file.cgi; or 4 the thisfile...

5.9AI score0.07469EPSS
Exploits1References5
CVE
CVE
added 2009/05/06 4:0 p.m.41 views

CVE-2009-1555

The CVE-2009-1555 entry concerns the Cisco Linksys WVC54GCA wireless video camera. Affected firmware is 1.00R22 and 1.00R24. The issue arises when the device responds to a Setup Wizard remote-management command by exposing configuration data, enabling remote attackers to obtain sensitive informat...

5CVSS7.3AI score0.01324EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2009/05/06 4:0 p.m.21 views

CVE-2009-1560

The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 stores passwords and wireless-network keys in cleartext in 1 passwd.htm and 2 Wsecurity.htm, which allows remote attackers to obtain sensitive information by reading the HTML source code...

6.2AI score0.01631EPSS
Exploits1References3
Rows per page
Query Builder