Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wiz vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-3737
Unspecified vulnerability in (1) System Consultants La!Cooda WIZ 1.4.0 and previous versions and (2) SpaceTag LacoodaST 2.1.3 and previous versions allows remote malicious users to execute arbitrary PHP scripts, and delete files, read files, and possibly have unknown other impact...
Spacetag Lacoodast
System Consultants La Cooda Wiz
4.3
CVSSv2
CVE-2008-3739
Cross-site scripting (XSS) vulnerability in (1) System Consultants La!Cooda WIZ 1.4.0 and previous versions and (2) SpaceTag LacoodaST 2.1.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, possibly involving uplo...
System Consultants La Cooda Wiz
Spacetag Lacoodast
4.3
CVSSv2
CVE-2007-3202
Cross-site scripting (XSS) vulnerability in the rich text editor in Webwiz allows remote malicious users to inject arbitrary web script or HTML via URL-encoded HTML composed of a frameset in which a frame has a SRC attribute pointing to a JavaScript document.
Bruce Corkhill Web Wiz Rich Text Editor 3.1
7.2
CVSSv2
CVE-1999-0145
Sendmail WIZ command enabled, allowing root access.
Eric Allman Sendmail
2.1
CVSSv2
CVE-2020-11924
An issue exists in WiZ Colors A60 1.14.0. Wi-Fi credentials are stored in cleartext in flash memory, which presents an information-disclosure risk for a discarded or resold device.
Wizconnected Colors A60 Firmware 1.14.0
3.5
CVSSv2
CVE-2019-19991
An issue exists in Selesta Visual Access Manager (VAM) 4.15.0 up to and including 4.29. Multiple Reflected Cross-site scripting (XSS) vulnerabilities allow remote authenticated users to inject arbitrary web script or HTML via the web pages /vam/vam_anagraphic.php, /vam/vam_vamuse...
Seling Visual Access Manager
7.5
CVSSv2
CVE-2005-4606
SQL injection vulnerability in check_user.asp in multiple Web Wiz products including (1) Site News 3.06 and previous versions, (2) Journal 1.0 and previous versions, (3) Polls 3.06 and previous versions, and (4) and Database Login 1.71 and previous versions allows remote maliciou...
Webwiz Site News
Webwiz Journal
Webwiz Database Login
Webwiz Weekly Poll
Webwiz Site News 2.00
5
CVSSv2
CVE-2019-18980
On Signify Philips Taolight Smart Wi-Fi Wiz Connected LED Bulb 9290022656 devices, an unprotected API lets remote users control the bulb's operation. Anyone can turn the bulb on or off, or change its color or brightness remotely. There is no authentication or encryption to u...
Philips Taolight Smart Wi-fi Wiz Connected Led Bulb 9290022656 Firmware -
3.3
CVSSv2
CVE-2020-11922
An issue exists in WiZ Colors A60 1.14.0. The device sends unnecessary information to the cloud controller server. Although this information is sent encrypted and has low risk in isolation, it decreases the privacy of the end user. The information sent includes the local IP addre...
Wizconnected A60 Colors Firmware 1.14.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3