Filtered by vendor Zerof
Subscribe
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-25323 | 1 Zerof | 1 Web Server | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
|
ZEROF Web Server 2.0 allows /admin.back XSS.
|
|||||
| CVE-2022-25322 | 1 Zerof | 1 Web Server | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
ZEROF Web Server 2.0 allows /HandleEvent SQL Injection.
|
|||||
| CVE-2021-30176 | 1 Zerof | 1 Expert | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
The ZEROF Expert pro/2.0 application for mobile devices allows SQL Injection via the Authorization header to the /v2/devices/add endpoint.
|
|||||
| CVE-2021-30175 | 1 Zerof | 1 Web Server | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
ZEROF Web Server 1.0 (April 2021) allows SQL Injection via the /HandleEvent endpoint for the login page.
|
|||||