Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sirpedrotavares vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2021-31249
A CRLF injection vulnerability was found on BF-430, BF-431, and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of validation on the parameter redirect= available on multiple CGI components.
Chiyu-tech Bf-430 Firmware -
Chiyu-tech Bf-431 Firmware -
Chiyu-tech Bf-450m Firmware -
9.8
CVSSv3
CVE-2021-31251
An authentication bypass in telnet server in BF-430 and BF431 232/422 TCP/IP Converter, BF-450M and SEMAC from CHIYU Technology Inc allows obtaining a privileged connection with the target device by supplying a specially malformed request and an attacker may force the remote teln...
Chiyu-tech Bf-430 Firmware -
Chiyu-tech Bf-431 Firmware -
Chiyu-tech Bf-450m Firmware -
Chiyu-tech Semac S2 Firmware -
Chiyu-tech Semac D1 Firmware -
Chiyu-tech Semac D2 Firmware -
Chiyu-tech Semac D4 Firmware -
Chiyu-tech Semac S3v3 Firmware -
Chiyu-tech Semac D2 N300 Firmware -
Chiyu-tech Semac S1 Osdp Firmware -
5.4
CVSSv3
CVE-2021-31250
Multiple storage XSS vulnerabilities were discovered on BF-430, BF-431 and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of sanitization of the input on the components man.cgi, if.cgi, dhcpc.cgi, ppp.cgi.
Chiyu-tech Bf-430 Firmware -
Chiyu-tech Bf-431 Firmware -
Chiyu-tech Bf-450m Firmware -
6.1
CVSSv3
CVE-2021-31641
An unauthenticated XSS vulnerability exists in several IoT devices from CHIYU Technology, including BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, BF-MINI-W, and SEMAC due to a lack of sanitization when the HTTP 404 message is generated.
Chiyu-tech Bf-430 Firmware -
Chiyu-tech Bf-431 Firmware -
Chiyu-tech Bf-450m Firmware -
Chiyu-tech Semac S2 Firmware -
Chiyu-tech Semac D1 Firmware -
Chiyu-tech Semac D2 Firmware -
Chiyu-tech Semac D4 Firmware -
Chiyu-tech Semac S3v3 Firmware -
Chiyu-tech Semac D2 N300 Firmware -
Chiyu-tech Semac S1 Osdp Firmware -
Chiyu-tech Bf-630 Firmware -
Chiyu-tech Bf-631w Firmware -
Chiyu-tech Bf-830w Firmware -
Chiyu-tech Webpass Firmware -
Chiyu-tech Bfminiw Firmware -
6.5
CVSSv3
CVE-2021-31642
A denial of service condition exists after an integer overflow in several IoT devices from CHIYU Technology, including BIOSENSE, Webpass, and BF-630, BF-631, and SEMAC. The vulnerability can be explored by sending an unexpected integer (> 32 bits) on the page parameter that wi...
Chiyu-tech Semac S2 Firmware -
Chiyu-tech Semac D1 Firmware -
Chiyu-tech Semac D2 Firmware -
Chiyu-tech Semac D4 Firmware -
Chiyu-tech Semac S3v3 Firmware -
Chiyu-tech Semac D2 N300 Firmware -
Chiyu-tech Semac S1 Osdp Firmware -
Chiyu-tech Bf-631 Firmware -
Chiyu-tech Bf-630 Firmware -
Chiyu-tech Webpass Firmware -
Chiyu-tech Biosense Firmware -
5.4
CVSSv3
CVE-2021-31643
An XSS vulnerability exists in several IoT devices from CHIYU Technology, including SEMAC, Biosense, BF-630, BF-631, and Webpass due to a lack of sanitization on the component if.cgi - username parameter.
Chiyu-tech Bf-631 Firmware -
Chiyu-tech Bf-630 Firmware -
Chiyu-tech Semac S2 Firmware -
Chiyu-tech Semac D1 Firmware -
Chiyu-tech Semac D2 Firmware -
Chiyu-tech Semac D4 Firmware -
Chiyu-tech Semac S3v3 Firmware -
Chiyu-tech Semac D2 N300 Firmware -
Chiyu-tech Semac S1 Osdp Firmware -
Chiyu-tech Webpass Firmware -
Chiyu-tech Biosense Firmware -
5.4
CVSSv3
CVE-2021-37391
A user without privileges in Chamilo LMS 1.11.14 can send an invitation message to another user, e.g., the administrator, through main/social/search.php, main/inc/lib/social.lib.php and steal cookies or execute arbitrary code on the administration side via a stored XSS vulnerabil...
Chamilo Chamilo Lms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started