Filtered by vendor Zerof
Subscribe
Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-25323 | 1 Zerof | 1 Web Server | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
ZEROF Web Server 2.0 allows /admin.back XSS. | |||||
CVE-2022-25322 | 1 Zerof | 1 Web Server | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
ZEROF Web Server 2.0 allows /HandleEvent SQL Injection. | |||||
CVE-2021-30176 | 1 Zerof | 1 Expert | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
The ZEROF Expert pro/2.0 application for mobile devices allows SQL Injection via the Authorization header to the /v2/devices/add endpoint. | |||||
CVE-2021-30175 | 1 Zerof | 1 Web Server | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
ZEROF Web Server 1.0 (April 2021) allows SQL Injection via the /HandleEvent endpoint for the login page. |