Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
luci vulnerabilities and exploits
(subscribe to this query)
3.7
CVSSv2
CVE-2013-7347
Luci in Red Hat Conga does not properly enforce the user session timeout, which might allow malicious users to gain access to the session by reading the __ac session cookie. NOTE: this issue has been SPLIT due to different vulnerability types. Use CVE-2012-3359 for the base64-enc...
Redhat Enterprise Linux 5
Redhat Conga
5
CVSSv2
CVE-2018-19879
An issue exists in /cgi-bin/luci on Teltonika RTU9XX (e.g., RUT950) R_31.04.89 before R_00.05.00.5 devices. The authentication functionality is not protected from automated tools used to make login attempts to the application. An anonymous attacker has the ability to make unlimit...
Teltonika Rut950 Firmware R 31.04.89
8.3
CVSSv2
CVE-2017-16923
Command Injection vulnerability in app_data_center on Shenzhen Tenda Ac9 US_AC9V1.0BR_V15.03.05.14_multi_TD01, Ac9 ac9_kf_V15.03.05.19(6318_)_cn, Ac15 US_AC15V1.0BR_V15.03.05.18_multi_TD01, Ac15 US_AC15V1.0BR_V15.03.05.19_multi_TD01, Ac18 US_AC18V1.0BR_V15.03.05.05_multi_TD01, an...
Tenda Ac9 Firmware Us Ac9v1.0br V15.03.05.14 Multi Td01
Tenda Ac9 Firmware Ac9 Kf V15.03.05.19\\(6318 \\) Cn
Tenda Ac15 Firmware Us Ac15v1.0br V15.03.05.18 Multi Td01
Tenda Ac15 Firmware Us Ac15v1.0br V15.03.05.19 Multi Td01
Tenda Ac18 Firmware Us Ac18v1.0br V15.03.05.05 Multi Td01
Tenda Ac18 Firmware Ac18 Kf V15.03.05.19\\(6318 \\) Cn
4.3
CVSSv2
CVE-2007-1462
The luci server component in conga preserves the password between page loads for the Add System/Cluster task flow by storing the password in the Value attribute of a password entry field, which allows malicious users to steal the password by performing a "view source" o...
Conga Conga
NA
CVE-2022-28372
On Verizon 5G Home LVSKIHP InDoorUnit (IDU) 3.4.66.162 and OutDoorUnit (ODU) 3.33.101.0 devices, the CRTC and ODU RPC endpoints provide a means of provisioning a firmware update for the device via crtc_fw_upgrade or crtcfwimage. The URL provided is not validated, and thus allows ...
Verizon Lvskihp Indoorunit Firmware 3.4.66.162
Verizon Lvskihp Outdoorunit Firmware 3.33.101.0
NA
CVE-2023-34644
Remote code execution vulnerability in Ruijie Networks Product: RG-EW series home routers and repeaters EW_3.0(1)B11P204, RG-NBS and RG-S1930 series switches SWITCH_3.0(1)B11P218, RG-EG series business VPN routers EG_3.0(1)B11P216, EAP and RAP series wireless access points AP_3.0...
Ruijie Rg-ew1200r Firmware 3.0\\(1\\)b11p204
Ruijie Rg-ew300 Firmware 3.0\\(1\\)b11p204
Ruijie Rg-ew3200gx Firmware 3.0\\(1\\)b11p204
Ruijie Rg-ew1200g Firmware 3.0\\(1\\)b11p204
Ruijie Rg-ew1800gx Firmware 3.0\\(1\\)b11p204
Ruijie Rg-ew300r Firmware 3.0\\(1\\)b11p204
Ruijie Rg-ew1200 Firmware 3.0\\(1\\)b11p204
Ruijie Rg-eg3000xe Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg105g Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg305gh-p-e Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg105g-p Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg3230 Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg1000e Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg105g-e Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg105gw\\(t\\) Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg105gw-x Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg2000ce Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg2100-p Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg209gs Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg310gh-e Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg3000eu Firmware 3.0\\(1\\)b11p216
Ruijie Rg-eg210g-p Firmware 3.0\\(1\\)b11p216
NA
CVE-2023-38902
A command injection vulnerability in RG-EW series home routers and repeaters v.EW_3.0(1)B11P219, RG-NBS and RG-S1930 series switches v.SWITCH_3.0(1)B11P219, RG-EG series business VPN routers v.EG_3.0(1)B11P219, EAP and RAP series wireless access points v.AP_3.0(1)B11P219, and NBC...
Ruijie Rg-ew1200 Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew1200g Pro Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew1200r Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew1300g Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew1800gx Pro Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew3000gx Pro Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew300 Pro Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew300r Firmware 3.0\\(1\\)b11p219
Ruijie Rg-ew3200gx Pro Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nb3200-24gt4xs Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs1850gc Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs1850gc V2 Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs2000 Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs2009g-p Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs200 Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs2026g-p Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs2026g Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs226f Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs228f Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs252f Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs3100-24gt4sfp-p Firmware 3.0\\(1\\)b11p219
Ruijie Rg-nbs3100-24gt4sfp-p V2 Firmware 3.0\\(1\\)b11p219
NA
CVE-2023-1389
TP-Link Archer AX21 (AX1800) firmware versions prior to 1.1.4 Build 20230219 contained a command injection vulnerability in the country form of the /cgi-bin/luci;stok=/locale endpoint on the web management interface. Specifically, the country parameter of the write operation was ...
Tp-link Archer Ax21 Firmware
4 Github repositories
4 Articles
NA
CVE-2023-28531
ssh-add in OpenSSH prior to 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9.
Openbsd Openssh
Netapp Solidfire Element Os -
Netapp Hci Bootstrap Os -
Netapp Brocade Fabric Operating System -
3 Github repositories
NA
CVE-2023-51384
In ssh-agent in OpenSSH prior to 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multi...
Openbsd Openssh
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »