image access gmbh Exploited Vulnerabilities

Image access gmbh vulnerabilities known to be exploited. Over the past 365 days, sorted by exploit discovery date.

JSON RSS CSV 🔔 Create Alert Trigger

Blind Boolean-Based SQL Injection Vulnerability in Avesko's Template_io.php File
CVE-2024-50584
Image Access GmbhScan2net👾4.4MEDIUM
Attackers Can Execute Arbitrary Code on Linux Devices via Valid PNG Files
CVE-2024-47946
Image Access GmbhScan2net👾7.2HIGH
Stored XSS Vulnerability in Edit Disclaimer Text Function
CVE-2024-47947
Image Access GmbhScan2net👾4.7MEDIUM
XSS Vulnerability in login page allows phishing attacks
CVE-2024-36494
Image Access GmbhScan2net👾4.7MEDIUM
Scanwizard Vulnerability: Arbitrary Javascript Execution in Browser
CVE-2024-36498
Image Access GmbhScan2net👾4.7MEDIUM
Unprotected File Name Input Vulnerability Allows Cross-Site Scripting
CVE-2024-28142
Image Access GmbhScan2net👾4.7MEDIUM
Unprotected Password Change Function Leaves Application Vulnerable to Account Takeover
CVE-2024-28143
Image Access GmbhScan2net👾8.4HIGH
Session Takeover Vulnerability in Self-Developed Session Management
CVE-2024-28144
Image Access GmbhScan2net👾5.5MEDIUM
SQL Injection Vulnerability in /class/dbconnect.php File
CVE-2024-28145
Image Access GmbhScan2net👾5.9MEDIUM
Hard-coded credentials pose security risk in new firmware update
CVE-2024-28146
Image Access GmbhScan2net👾8.4HIGH
SQL Injection Vulnerability in msg_events.php Could Allow Unauthenticated Execution of System Commands
CVE-2024-28138
Image Access GmbhScan2net👾7.3HIGH
Root Escalation Risk in Sudo Due to Unsecured Mount Command
CVE-2024-28139
Image Access GmbhScan2net👾8.8HIGH
Scan2Net Scanner Device Vulnerable to Root Access
CVE-2024-28140
Image Access GmbhScan2net👾6.1MEDIUM
Web App Vulnerable to Cross-Site Request Forgery Attacks
CVE-2024-28141
Image Access GmbhScan2net👾6.3MEDIUM

image access gmbh Exploited Vulnerabilities

Vulnerability Published:

Sort By:

Blind Boolean-Based SQL Injection Vulnerability in Avesko's Template_io.php File

Attackers Can Execute Arbitrary Code on Linux Devices via Valid PNG Files

Stored XSS Vulnerability in Edit Disclaimer Text Function

XSS Vulnerability in login page allows phishing attacks

Scanwizard Vulnerability: Arbitrary Javascript Execution in Browser

Unprotected File Name Input Vulnerability Allows Cross-Site Scripting

Unprotected Password Change Function Leaves Application Vulnerable to Account Takeover

Session Takeover Vulnerability in Self-Developed Session Management

SQL Injection Vulnerability in /class/dbconnect.php File

Hard-coded credentials pose security risk in new firmware update

SQL Injection Vulnerability in msg_events.php Could Allow Unauthenticated Execution of System Commands

Root Escalation Risk in Sudo Due to Unsecured Mount Command

Scan2Net Scanner Device Vulnerable to Root Access

Web App Vulnerable to Cross-Site Request Forgery Attacks