ISOinsight

CVEs (3)

CVE	Vendor / Product	Sev	Risk	CVSS	Published	Description
CVE-2025-4559	NetVision Information ISOinsight	Cri	0.64	9.8	May 12, 2025	The ISOinsight from Netvision has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.
CVE-2025-4560	NetVision Information ISOinsight	Med	0.42	6.5	May 12, 2025	The ISOinsight from Netvision has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access certain system functions. These functions include viewing the administrator list, viewing and editing IP settings, and uploading files.
CVE-2025-15355	NetVision Information ISOinsight	Med	0.40	6.1	Dec 30, 2025	ISOinsight developed by NetVision Information has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks.

CVE-2025-4559CriMay 12, 2025
NetVision Information
ISOinsight
risk 0.64cvss 9.8epss 0.00
The ISOinsight from Netvision has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.
CVE-2025-4560MedMay 12, 2025
NetVision Information
ISOinsight
risk 0.42cvss 6.5epss 0.00
The ISOinsight from Netvision has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access certain system functions. These functions include viewing the administrator list, viewing and editing IP settings, and uploading files.
CVE-2025-15355MedDec 30, 2025
NetVision Information
ISOinsight
risk 0.40cvss 6.1epss 0.00
ISOinsight developed by NetVision Information has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks.