|
251831
|
9.8 |
CRITICAL
Network
|
axis
|
p1204_firmware
p3225_firmware
p3367_firmware
m3045_firmware
m3005_firmware
m3007_firmware
|
A vulnerability, was found in legacy Axis devices such as P3225 and M3005. This affects an unknown part of the component CGI Script. The manipulation leads to improper privilege management. It is pos…
|
CWE-269
Improper Privilege Management
|
CVE-2017-20049
|
2024-11-21 12:22 |
2022-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251832
|
8.8 |
HIGH
Network
|
vendavo
|
pricepoint
|
A vulnerability was found in Navetti PricePoint 4.6.0.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack ca…
|
CWE-352
Origin Validation Error
|
CVE-2017-20045
|
2024-11-21 12:22 |
2022-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251833
|
5.4 |
MEDIUM
Network
|
vendavo
|
pricepoint
|
A vulnerability was found in Navetti PricePoint 4.6.0.0. It has been classified as problematic. This affects an unknown part. The manipulation leads to basic cross site scripting (Reflected). It is p…
|
CWE-79
Cross-site Scripting
|
CVE-2017-20044
|
2024-11-21 12:22 |
2022-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251834
|
5.4 |
MEDIUM
Network
|
vendavo
|
pricepoint
|
A vulnerability was found in Navetti PricePoint 4.6.0.0 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to basic cross site scripting (Pers…
|
CWE-79
Cross-site Scripting
|
CVE-2017-20043
|
2024-11-21 12:22 |
2022-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251835
|
8.8 |
HIGH
Network
|
vendavo
|
pricepoint
|
A vulnerability has been found in Navetti PricePoint 4.6.0.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection (Blind). T…
|
CWE-89
SQL Injection
|
CVE-2017-20042
|
2024-11-21 12:22 |
2022-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251836
|
6.5 |
MEDIUM
Network
|
ucweb
|
uc_browser
|
A vulnerability was found in Ucweb UC Browser 11.2.5.932. It has been classified as critical. Affected is an unknown function of the component HTML Handler. The manipulation of the argument title lea…
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2017-20041
|
2024-11-21 12:22 |
2022-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251837
|
5.5 |
MEDIUM
Local
|
sicunet
|
access_control
|
A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been declared as problematic. This vulnerability affects unknown code of the component Password Storage. The manipulation leads…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2017-20040
|
2024-11-21 12:22 |
2022-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251838
|
9.8 |
CRITICAL
Network
|
sicunet
|
access_control
|
A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been classified as very critical. This affects an unknown part. The manipulation leads to weak authentication. It is possible t…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-20039
|
2024-11-21 12:22 |
2022-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251839
|
8.8 |
HIGH
Network
|
sicunet
|
access_control
|
A vulnerability was found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this issue is some unknown functionality of the file card_scan_decoder.php. The manipulation of…
|
NVD-CWE-noinfo
|
CVE-2017-20038
|
2024-11-21 12:22 |
2022-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251840
|
8.8 |
HIGH
Network
|
sicunet
|
access_control
|
A vulnerability has been found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument c leads t…
|
NVD-CWE-noinfo
|
CVE-2017-20037
|
2024-11-21 12:22 |
2022-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
