Vulnerabilities (CVE)

Filtered by vendor Lg Project Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-3926 1 Lg Project 1 Lg 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in lg.cgi in Cougar LG 1.9 allows remote attackers to inject arbitrary web script or HTML via the "addr" parameter.
CVE-2014-3928 1 Lg Project 1 Lg 2024-02-04 5.0 MEDIUM 9.8 CRITICAL
Cougar-LG stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain credentials.
CVE-2014-3930 1 Lg Project 1 Lg 2024-02-04 5.0 MEDIUM 7.5 HIGH
lg.pl in Cistron-LG 1.01 stores sensitive information under the web root with insufficient access controls, which allows remote attackers to obtain IP addresses and other unspecified router credentials.
CVE-2014-3929 1 Lg Project 1 Lg 2024-02-04 5.0 MEDIUM 7.5 HIGH
The default configuration for Cougar-LG stores sensitive information under the web root with insufficient access control, which might allow remote attackers to obtain private ssh keys.