Shenzhen Skyworth RN510 suffers from an unauthenticated sensitive information disclosure vulnerability.
7f26e9706a9282668f82475d29e2552e812bbb3bd068893eb424f30e0d699c6d
Shenzhen Skyworth RN510 suffers from cross site request forgery and cross site scripting vulnerabilities.
70d4b29f86b8a386559ce1885039111a11ce3147edcb6cc01fd5a7adda137f43
Shenzhen Skyworth RN510 suffers from a buffer overflow vulnerability that allows for remote code execution.
93aaa64937baf7f896bc583390423bd6be7254ef45979a7f1e67273873d3d9df
Multiple TP-Link devices suffer from an unauthenticated persistent cross site scripting vulnerability. Affected models include TD-W9977, TL-WA801ND, TL-WA801N, TL-WR802N, and Archer-C3150.
e35e1937104dc66eacb185dee5eb8adeeab2b99d9f05fd8364987d6dd5a729bd
Unibox version 2.4 suffers from remote code execution and cross site request forgery vulnerabilities.
8dd77b322f43636d3235c2c88700453adfa9865970ffd5dd3a39a083974ecbb8
Various Unibox products suffers from a cross site request forgery vulnerability.
b2ad463fe05cca881eb2aaa2883ee1d6b019cd543a3dfca94efb14e2e27c91e8
A denial of service issue has been discovered in the Gecko component of KaiOS 2.5 10.05 (platform 48.0.a2) on Nokia 8810 4G devices. When a crafted web page is visited with the internal browser, the Gecko process crashes with a segfault. Successful exploitation could lead to the remote code execution on the device.
41ed47df5f0cb6c76f6d18138f1661d9ed68c2bbe0c204c4e5369cd7ff9e62fd
Raisecom Technology GPON-ONU HT803G-07 suffers from an authenticated command injection vulnerability in the newpass and confpass parameters in /bin/WebMGR.
e7ecf5fa2c6f869e62d82c9df7399dbcbd72c48e427d4b22e50975a3e101f661
Raisecom Technology GPON-ONU HT803G-07 suffers from an authenticated command injection vulnerability in the fmgpon_loid parameter.
20c807e8e9b1420883bb9554d5567b9aa797cbf1aa083b30b34637600361e93f
SYSTORME ISG products ISG-600C, ISG-600H, and ISG-800W suffer from an authenticated command injection vulnerability.
74184a70ebca4b40a63ba803ab0d7c6c1d3778f3752608a8f155df9f97e121c8
SYSTORME ISG products ISG-600C, ISG-600H, and ISG-800W suffer from a cross site request forgery vulnerability.
3afd770ed7f96641d003de944e95ad53a06c7f7713c9c607fef61adfddd70330
A stack overflow vulnerability has been identified in multiple Skyworth GPON HomeGateways and Optical Network terminals. Affected products include 1.DT741 Converged Intelligent Terminal (G/EPON+IPTV), 2.DT741 Converged Intelligent Terminal (G/EPON+IPTV), 3.DT721-cb GPON uplink home gateway (GPON+2FE+1POTS), 4.DT721-cb GPON Uplink Home Gateway (GPON+2FE+1POTS), 5.DT741-cb GPON uplink home gateway (GPON+4FE+1POTS+WIFI+USB), 6.DT741-cb GPON Uplink Home Gateway (GPON+4FE+1POTS+WIFI+USB), and 7.DT741-cbGPON uplink home gateway DT741-cb.
4f48da3e8a78a9cf4093887c381e510d71c9c97ebafd060e27501d9e12a2e61d
Manage Engine OPutils version 8.0 suffers from an authorization bypass vulnerability due to a missing function level access control.
b9e7e86ebc2d1e55dc5329a95efdaca283be5268b1a3a03b374a5d737c611082
Manage Engine OPutils version 8.0 suffers from a privilege escalation vulnerability.
b977e013fda04f44e8af632bcc03cc1219b52ae3d3bd69ffba3b620b6a52c170
Manage Engine OPutils version 8.0 suffers from cross site request forgery and cross site scripting vulnerabilities.
733c28616c1891158bef1795b1d8b042f1e58ddc0cd0991868a9f08d50bd3559
ManageEngine Network Configuration Management build version 11000 suffers from a privilege escalation vulnerability.
b1e8ea1844311d691d035609460b77754f923da68c3f14f66c5c9e53051686e2
ManageEngine Network Configuration Management build 11000 suffers from a cross site request forgery vulnerability.
b4748784f8dee5785fb74729ebcd54c6263a9b3b6fefef6c72fb3f86e7114d00
WordPress Ad Buttons plugin version 2.3.1 suffers from cross site request forgery and cross site scripting vulnerabilities.
38b043d0ddd6274052aa3b2235c087b0a5f86ffbd8a74ae736c9855251b13cd0
WordPress Ultimate Profile Builder plugin version 2.3.3 suffers from cross site request forgery and cross site scripting vulnerabilities.
e306dde4e30a050baaee377e244ad54d920791bdf5e7dd8e595b3a7eaca44b37
WordPress ClickBank Ads plugin version 1.7 suffers from cross site request forgery and cross site scripting vulnerabilities.
47910384921948b511a328ff8006171ac9d2ec58cab3173c9f2b6b746ca631eb
Manage Engine Asset Explorer version 6.10 build 6110 suffers from cross site request forgery and persistent cross site scripting vulnerabilities.
195e2f680ce1f1256efa4ca7d96a6455fb8bb335560c4ad2d9e348c0cd79ddb7
WordPress Ad Inserter plugin version 1.5.2 suffers from cross site request forgery and cross site scripting vulnerabilities.
fc4d07d0daf390ca0c72e3db173c0a59ad0af1b9efa29d6fd45e91a1f202d286
WordPress Embed-Articles plugin version 7.0.3 suffers from cross site request forgery and cross site scripting vulnerabilities.
a8cef952b6cc90193465ca3ccb8b29e293b5fed101d0cdff61fab9964921ee33
WordPress WP Statistics plugin version 9.1.2 suffers from stored cross site scripting vulnerabilities.
7417199952c4f4c2dfe0f63ea7723e48742cb4ca58d9e91e2dd4096de4abde78
WordPress AB Google Map Travel (AB-MAP) plugin version 4.0 suffers from cross site request forgery and cross site scripting vulnerabilities.
dbd0939d53280d5f0c1443437fc3c64a3c5ad487379041dd2756ab5536b86ce4