Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
karn ganeshen vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2015-7246
D-Link DVG-N5402SP with firmware W1000CN-00, W1000CN-03, or W2000EN-00 has a default password of root for the root account and tw for the tw account, which makes it easier for remote malicious users to obtain administrative access.
D-link Dvg-n5402sp Firmware W1000cn-00
D-link Dvg-n5402sp Firmware W1000cn-03
D-link Dvg-n5402sp Firmware W2000en-00
1 EDB exploit
10
CVSSv2
CVE-2015-6018
The diagnostic-ping implementation on ZyXEL PMG5318-B20A devices with firmware prior to 1.00(AANC.2)C0 allows remote malicious users to execute arbitrary commands via the PingIPAddr parameter.
Zyxel Pmg5318-b20a Firmware
1 EDB exploit
7.5
CVSSv2
CVE-2015-8282
SeaWell Networks Spectrum SDC 02.05.00 has a default password of "admin" for the "admin" account.
Seawell Networks Spectrum Sdc 02.05.00
1 EDB exploit
6.8
CVSSv2
CVE-2015-8283
Directory traversal vulnerability in configure_manage.php in SeaWell Networks Spectrum SDC 02.05.00.
Seawell Networks Spectrum Sdc 02.05.00
1 EDB exploit
6.5
CVSSv2
CVE-2015-8284
SeaWell Networks Spectrum SDC 02.05.00 allows remote viewer users to perform administrative functions.
Seawell Networks Spectrum Sdc 02.05.00
1 EDB exploit
9
CVSSv2
CVE-2016-0861
General Electric (GE) Industrial Solutions UPS SNMP/Web Adapter devices with firmware prior to 4.8 allow remote authenticated users to execute arbitrary commands via unspecified vectors.
Ge Ups Snmp Web Adapter Firmware
1 EDB exploit
5
CVSSv2
CVE-2015-7245
Directory traversal vulnerability in D-Link DVG-N5402SP with firmware W1000CN-00, W1000CN-03, or W2000EN-00 allows remote malicious users to read sensitive information via a .. (dot dot) in the errorpage parameter.
D-link Dvg-n5402sp Firmware W1000cn-00
D-link Dvg-n5402sp Firmware W1000cn-03
D-link Dvg-n5402sp Firmware W2000en-00
1 EDB exploit
7.8
CVSSv2
CVE-2015-7247
D-Link DVG-N5402SP with firmware W1000CN-00, W1000CN-03, or W2000EN-00 discloses usernames, passwords, keys, values, and web account hashes (super and admin) in plaintext when running a configuration backup, which allows remote malicious users to obtain sensitive information.
D-link Dvg-n5402sp Firmware W1000cn-00
D-link Dvg-n5402sp Firmware W1000cn-03
D-link Dvg-n5402sp Firmware W2000en-00
1 EDB exploit
7.5
CVSSv2
CVE-2016-2296
Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited does not require authentication for "post-admin" login pages, which allows remote malicious users to obtain sensitive information or modify data via unspecified vectors.
Meteocontrol Web\\'log Pro Unlimited -
Meteocontrol Web\\'log Pro -
Meteocontrol Web\\'log Light -
Meteocontrol Web\\'log Basic 100 -
1 EDB exploit
10
CVSSv2
CVE-2016-5791
An Improper Authentication issue exists in JanTek JTC-200, all versions. The improper authentication could provide an undocumented BusyBox Linux shell accessible over the TELNET service without any authentication.
Jantek Jtc-200 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »