| Page(s) : 1 2 3 4 5 6 [7] 8 9 10 11 12 13 14 15 16 17 ... | Result(s) : 325573 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-07-01 | CVE-2025-34053 | cve | An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices’ streamd web server. The strstr() function is used to identify ".cab" requests, allowing ... |
| N/A | 2025-07-01 | CVE-2025-34054 | cve | An unauthenticated command injection vulnerability exists in AVTECH DVR devices via Search.cgi?action=cgi_query. The use of wget without input sanitization allows attackers to i... |
| N/A | 2025-07-01 | CVE-2025-34055 | cve | An OS command injection vulnerability exists in AVTECH DVR, NVR, and IP camera devices within the adcommand.cgi endpoint, which interfaces with the ActionD daemon. Authenticated... |
| N/A | 2025-07-01 | CVE-2025-34056 | cve | An OS command injection vulnerability exists in AVTECH IP camera, DVR, and NVR devices via the PwdGrp.cgi endpoint, which handles user and group management operations. Authentic... |
| N/A | 2025-07-01 | CVE-2025-34058 | cve | Hikvision Streaming Media Management Server v2.3.5 uses default credentials that allow remote attackers to authenticate and access restricted functionality. After authenticating... |
| N/A | 2025-07-01 | CVE-2025-34059 | cve | An SQL injection vulnerability exists in the Dahua Smart Cloud Gateway Registration Management Platform via the username parameter in the /index.php/User/doLogin endpoint. The a... |
| N/A | 2025-07-01 | CVE-2025-34060 | cve | A PHP objection injection vulnerability exists in the Monero Project’s Laravel-based forum software due to unsafe handling of untrusted input in the /get/image/ endpoint. The ap... |
| N/A | 2025-07-01 | CVE-2025-34062 | cve | An information disclosure vulnerability exists in OneLogin AD Connector versions prior to 6.1.5 via the /api/adc/v4/configuration endpoint. An attacker with access to a valid di... |
| N/A | 2025-07-01 | CVE-2025-34063 | cve | A cryptographic authentication bypass vulnerability exists in OneLogin AD Connector prior to 6.1.5 due to the exposure of a tenant’s SSO JWT signing key via the /api/adc/v4/conf... |
| N/A | 2025-07-01 | CVE-2025-34064 | cve | A cloud infrastructure misconfiguration in OneLogin AD Connector results in log data being sent to a hardcoded S3 bucket (onelogin-adc-logs-production) without validating bucket... |
| N/A | 2025-07-01 | CVE-2025-34065 | cve | An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices’ streamd web server. The strstr() function allows unauthenticated access to any request c... |
| N/A | 2025-07-01 | CVE-2025-34066 | cve | An improper certificate validation vulnerability exists in AVTECH IP cameras, DVRs, and NVRs due to the use of wget with --no-check-certificate in scripts like SyncCloudAccount.... |
| N/A | 2025-07-01 | CVE-2025-37098 | cve | A path traversal vulnerability exists in HPE Insight Remote Support (IRS) prior to v7.15.0.646. |
| N/A | 2025-07-01 | CVE-2025-50404 | cve | Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Overflow. The websReadEvent function incorrectly uses the int type when processing the "command" field of the... |
| N/A | 2025-07-01 | CVE-2025-50405 | cve | Intelbras RX1500 Router v2.2.17 and before is vulnerable to Incorrect Access Control in the FirmwareUpload function and GetFirmwareValidation function. |
| N/A | 2025-07-01 | CVE-2025-53099 | cve | Sentry is a developer-first error tracking and performance monitoring tool. Prior to version 25.5.0, an attacker with a malicious OAuth application registered with Sentry can ta... |
| 7.3 | 2025-07-01 | CVE-2025-6957 | cve | A vulnerability was found in Campcodes Employee Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /process/eprocess.ph... |
| 7.3 | 2025-07-01 | CVE-2025-6958 | cve | A vulnerability was found in Campcodes Employee Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /edit.php. The manip... |
| 7.3 | 2025-07-01 | CVE-2025-6959 | cve | A vulnerability classified as critical has been found in Campcodes Employee Management System 1.0. Affected is an unknown function of the file /eloginwel.php. The manipulation o... |
| 7.3 | 2025-07-01 | CVE-2025-6960 | cve | A vulnerability classified as critical was found in Campcodes Employee Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /empproject.... |
| Page(s) : 1 2 3 4 5 6 [7] 8 9 10 11 12 13 14 15 16 17 ... | Result(s) : 325573 |
