Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Zenitel Subscribe
Filtered by product Ip-stationweb
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-19927 1 Zenitel 2 Ip-stationweb, Ip-stationweb Firmware 2024-11-21 3.5 LOW 4.8 MEDIUM
Zenitel Norway IP-StationWeb before 4.2.3.9 allows stored XSS via the Display Name for Station Status or Account Settings, related to the goform/zForm_save_changes sip_nick parameter. The password of alphaadmin for the admin account may be used for authentication in some cases.
CVE-2018-19926 1 Zenitel 2 Ip-stationweb, Ip-stationweb Firmware 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Zenitel Norway IP-StationWeb before 4.2.3.9 allows reflected XSS via the goform/ PATH_INFO.

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024