6.1CVSS
6AI Score
0.001EPSS
Castle Rock Computing SNMPc before 2015-12-17 has SQL injection via the sc parameter.
8.8CVSS
9.1AI Score
0.001EPSS
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There is pervasive CSRF.
8.8CVSS
8.6AI Score
0.001EPSS
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive information via info.php4.
7.5CVSS
7.2AI Score
0.022EPSS
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive credential information from backup files.
7.5CVSS
7.3AI Score
0.026EPSS
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There are multiple persistent (stored) and reflected XSS vulnerabilities.
5.4CVSS
5.3AI Score
0.001EPSS
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It includes the username and password values in cleartext within each request's cookie value.
7.5CVSS
7.6AI Score
0.005EPSS