| Max CVSS | 7.5 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-13140 | 4.0 |
Inteno EG200 EG200-WU7P1U_ADAMO3.16.4-190226_1650 routers have a JUCI ACL misconfiguration that allows the "user" account to extract the 3DES key via JSON commands to ubus. The 3DES key is used to decrypt the provisioning file provided by Adamo Telec
|
31-03-2022 - 17:47 | 16-09-2019 - 17:15 | |
| CVE-2008-5571 | 7.5 |
SQL injection vulnerability in admin/login.asp in Professional Download Assistant 0.1 allows remote attackers to execute arbitrary SQL commands via the (1) uname parameter (aka user field) or the (2) psw parameter (aka passwd field). NOTE: some of t
|
29-09-2017 - 01:32 | 15-12-2008 - 18:00 | |
| CVE-2011-5212 | 7.5 |
SQL injection vulnerability in admin/index.php in Subrion CMS 2.0.4 allows remote attackers to execute arbitrary SQL commands via the (1) user name or (2) password field.
|
14-02-2013 - 04:47 | 22-10-2012 - 23:55 | |
| CVE-2011-5211 | 4.3 |
Cross-site scripting (XSS) vulnerability in the poll module in Subrion CMS 2.0.4 allows remote attackers to inject arbitrary web script or HTML via the title field. NOTE: some of these details are obtained from third party information. NOTE: this m
|
15-11-2012 - 05:00 | 22-10-2012 - 23:55 |