Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wiz vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2008-3737
Unspecified vulnerability in (1) System Consultants La!Cooda WIZ 1.4.0 and previous versions and (2) SpaceTag LacoodaST 2.1.3 and previous versions allows remote malicious users to execute arbitrary PHP scripts, and delete files, read files, and possibly have unknown other impact...
Spacetag Lacoodast
System Consultants La Cooda Wiz
383
VMScore
CVE-2008-3739
Cross-site scripting (XSS) vulnerability in (1) System Consultants La!Cooda WIZ 1.4.0 and previous versions and (2) SpaceTag LacoodaST 2.1.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, possibly involving uplo...
System Consultants La Cooda Wiz
Spacetag Lacoodast
383
VMScore
CVE-2007-3202
Cross-site scripting (XSS) vulnerability in the rich text editor in Webwiz allows remote malicious users to inject arbitrary web script or HTML via URL-encoded HTML composed of a frameset in which a frame has a SRC attribute pointing to a JavaScript document.
Bruce Corkhill Web Wiz Rich Text Editor 3.1
641
VMScore
CVE-1999-0145
Sendmail WIZ command enabled, allowing root access.
Eric Allman Sendmail
187
VMScore
CVE-2020-11924
An issue exists in WiZ Colors A60 1.14.0. Wi-Fi credentials are stored in cleartext in flash memory, which presents an information-disclosure risk for a discarded or resold device.
Wizconnected Colors A60 Firmware 1.14.0
312
VMScore
CVE-2019-19991
An issue exists in Selesta Visual Access Manager (VAM) 4.15.0 up to and including 4.29. Multiple Reflected Cross-site scripting (XSS) vulnerabilities allow remote authenticated users to inject arbitrary web script or HTML via the web pages /vam/vam_anagraphic.php, /vam/vam_vamuse...
Seling Visual Access Manager
668
VMScore
CVE-2005-4606
SQL injection vulnerability in check_user.asp in multiple Web Wiz products including (1) Site News 3.06 and previous versions, (2) Journal 1.0 and previous versions, (3) Polls 3.06 and previous versions, and (4) and Database Login 1.71 and previous versions allows remote maliciou...
Webwiz Site News
Webwiz Journal
Webwiz Database Login
Webwiz Weekly Poll
Webwiz Site News 2.00
445
VMScore
CVE-2019-18980
On Signify Philips Taolight Smart Wi-Fi Wiz Connected LED Bulb 9290022656 devices, an unprotected API lets remote users control the bulb's operation. Anyone can turn the bulb on or off, or change its color or brightness remotely. There is no authentication or encryption to u...
Philips Taolight Smart Wi-fi Wiz Connected Led Bulb 9290022656 Firmware -
294
VMScore
CVE-2020-11922
An issue exists in WiZ Colors A60 1.14.0. The device sends unnecessary information to the cloud controller server. Although this information is sent encrypted and has low risk in isolation, it decreases the privacy of the end user. The information sent includes the local IP addre...
Wizconnected A60 Colors Firmware 1.14.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298
CVE-2024-20356
CVE-2023-21987
CVE-2024-33217
bypass
CVE-2024-31804
CVE-2024-32660
unauthorized
SSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3