Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wiz vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3737
Unspecified vulnerability in (1) System Consultants La!Cooda WIZ 1.4.0 and previous versions and (2) SpaceTag LacoodaST 2.1.3 and previous versions allows remote malicious users to execute arbitrary PHP scripts, and delete files, read files, and possibly have unknown other impact...
Spacetag Lacoodast
System Consultants La Cooda Wiz
NA
CVE-2008-3739
Cross-site scripting (XSS) vulnerability in (1) System Consultants La!Cooda WIZ 1.4.0 and previous versions and (2) SpaceTag LacoodaST 2.1.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, possibly involving uplo...
System Consultants La Cooda Wiz
Spacetag Lacoodast
NA
CVE-2007-3202
Cross-site scripting (XSS) vulnerability in the rich text editor in Webwiz allows remote malicious users to inject arbitrary web script or HTML via URL-encoded HTML composed of a frameset in which a frame has a SRC attribute pointing to a JavaScript document.
Bruce Corkhill Web Wiz Rich Text Editor 3.1
NA
CVE-1999-0145
Sendmail WIZ command enabled, allowing root access.
Eric Allman Sendmail
5.5
CVSSv3
CVE-2020-11924
An issue exists in WiZ Colors A60 1.14.0. Wi-Fi credentials are stored in cleartext in flash memory, which presents an information-disclosure risk for a discarded or resold device.
Wizconnected Colors A60 Firmware 1.14.0
5.4
CVSSv3
CVE-2019-19991
An issue exists in Selesta Visual Access Manager (VAM) 4.15.0 up to and including 4.29. Multiple Reflected Cross-site scripting (XSS) vulnerabilities allow remote authenticated users to inject arbitrary web script or HTML via the web pages /vam/vam_anagraphic.php, /vam/vam_vamuse...
Seling Visual Access Manager
NA
CVE-2005-4606
SQL injection vulnerability in check_user.asp in multiple Web Wiz products including (1) Site News 3.06 and previous versions, (2) Journal 1.0 and previous versions, (3) Polls 3.06 and previous versions, and (4) and Database Login 1.71 and previous versions allows remote maliciou...
Webwiz Site News
Webwiz Journal
Webwiz Database Login
Webwiz Weekly Poll
Webwiz Site News 2.00
7.5
CVSSv3
CVE-2019-18980
On Signify Philips Taolight Smart Wi-Fi Wiz Connected LED Bulb 9290022656 devices, an unprotected API lets remote users control the bulb's operation. Anyone can turn the bulb on or off, or change its color or brightness remotely. There is no authentication or encryption to u...
Philips Taolight Smart Wi-fi Wiz Connected Led Bulb 9290022656 Firmware -
4.3
CVSSv3
CVE-2020-11922
An issue exists in WiZ Colors A60 1.14.0. The device sends unnecessary information to the cloud controller server. Although this information is sent encrypted and has low risk in isolation, it decreases the privacy of the end user. The information sent includes the local IP addre...
Wizconnected A60 Colors Firmware 1.14.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3012
CVE-2024-30200
XXE
CVE-2023-24955
CVE-2023-42931
CVE-2024-29231
remote code execution
cross-site scripting
CVE-2024-0677
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3