Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
luca.chiou vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2018-19616
An issue exists in Rockwell Automation Allen-Bradley PowerMonitor 1000. An unauthenticated user can add/edit/remove administrators because access control is implemented on the client side via a disabled attribute for a BUTTON element.
Rockwellautomation Powermonitor 1000 Firmware 1408-em3a-ent B
9.8
CVSSv3
CVE-2019-11367
An issue exists in AUO Solar Data Recorder prior to 1.3.0. The web portal uses HTTP Basic Authentication and provides the account and password in the WWW-Authenticate attribute. By using this account and password, anyone can login successfully.
Auo Solar Data Recorder
6.1
CVSSv3
CVE-2020-8839
Stored XSS exists on CHIYU BF-430 232/485 TCP/IP Converter devices prior to 1.16.00, as demonstrated by the /if.cgi TF_submask field.
Chiyu-t Bf-430 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started