Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In July 2020
CVE-2020-15032
NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Incidents.php id parameter.
CVSS Score
5.4
EPSS Score
0.003
Published
2020-07-07
CVE-2020-15033
NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the snmpget.php ip parameter.
CVSS Score
5.4
EPSS Score
0.003
Published
2020-07-07
CVE-2020-15034
NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Setup.php tet parameter.
CVSS Score
5.4
EPSS Score
0.003
Published
2020-07-07
CVE-2020-15035
NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Map.php hde parameter.
CVSS Score
5.4
EPSS Score
0.003
Published
2020-07-07
CVE-2020-15515
The turn extension through 0.3.2 for TYPO3 allows Remote Code Execution.
CVSS Score
8.8
EPSS Score
0.022
Published
2020-07-07
CVE-2020-15037
NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Reports-Devices.php page st[] parameter.
CVSS Score
5.4
EPSS Score
0.002
Published
2020-07-07
CVE-2019-4323
"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."
CVSS Score
4.3
EPSS Score
0.002
Published
2020-07-07
CVE-2019-4324
"HCL AppScan Enterprise is susceptible to Cross-Site Scripting while importing a specially crafted test policy."
CVSS Score
6.1
EPSS Score
0.003
Published
2020-07-07
CVE-2020-15036
NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Topology-Linked.php dv parameter.
CVSS Score
5.4
EPSS Score
0.002
Published
2020-07-07
CVE-2020-15577
An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. Cameralyzer allows attackers to write files to the SD card. The Samsung ID is SVE-2020-16830 (July 2020).
CVSS Score
5.5
EPSS Score
0.0
Published
2020-07-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved