Access Analysis Cgi An Analyzer
CVEs (5)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-22113 | 0.00 | — | 0.00 | Jan 22, 2024 | Open redirect vulnerability in Access analysis CGI An-Analyzer released in 2023 December 31 and earlier allows a remote unauthenticated attacker to redirect users to arbitrary websites and conduct phishing attacks via a specially crafted URL. | |||
| CVE-2019-5988 | 0.00 | — | 0.01 | Jan 6, 2020 | Stored cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote attackers to inject arbitrary web script or HTML via the Management Page. | |||
| CVE-2019-5989 | 0.00 | — | 0.01 | Jan 6, 2020 | DOM-based cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote attackers to inject arbitrary web script or HTML via the Analysis Object Page. | |||
| CVE-2019-5990 | 0.00 | — | 0.01 | Jan 6, 2020 | Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allow remote attackers to obtain a login password via HTTP referer. | |||
| CVE-2019-5987 | 0.00 | — | 0.03 | Jan 6, 2020 | Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote authenticated attackers to execute arbitrary OS commands via the Management Page. |
- CVE-2024-22113Jan 22, 2024risk 0.00cvss —epss 0.00
Open redirect vulnerability in Access analysis CGI An-Analyzer released in 2023 December 31 and earlier allows a remote unauthenticated attacker to redirect users to arbitrary websites and conduct phishing attacks via a specially crafted URL.
- CVE-2019-5988Jan 6, 2020risk 0.00cvss —epss 0.01
Stored cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote attackers to inject arbitrary web script or HTML via the Management Page.
- CVE-2019-5989Jan 6, 2020risk 0.00cvss —epss 0.01
DOM-based cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote attackers to inject arbitrary web script or HTML via the Analysis Object Page.
- CVE-2019-5990Jan 6, 2020risk 0.00cvss —epss 0.01
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allow remote attackers to obtain a login password via HTTP referer.
- CVE-2019-5987Jan 6, 2020risk 0.00cvss —epss 0.03
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote authenticated attackers to execute arbitrary OS commands via the Management Page.