VYPR
Vendor

Byzoro

Products
7
CVEs
38
Across products
39
Status
Private

Products

7

Recent CVEs

38
View all 38 CVEs →
  • CVE-2024-27718HigMar 5, 2024
    risk 0.51cvss 7.8epss 0.01

    SQL Injection vulnerability in Baizhuo Network Smart s200 Management Platform v.S200 allows a local attacker to obtain sensitive information and escalate privileges via the /importexport.php component.

  • CVE-2024-27733HigMar 7, 2024
    risk 0.50cvss 7.7epss 0.00

    File Upload vulnerability in Byzro Network Smart s42 Management Platform v.S42 allows a local attacker to execute arbitrary code via the useratte/userattestation.php component.

  • CVE-2024-28520MedApr 4, 2024
    risk 0.42cvss 6.5epss 0.00

    File Upload vulnerability in Byzoro Networks Smart multi-service security gateway intelligent management platform version S210, allows an attacker to obtain sensitive information via the uploadfile.php component.

  • CVE-2024-4904MedMay 15, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in Byzoro Smart S200 Management Platform up to 20240507. It has been rated as critical. This issue affects some unknown processing of the file /useratte/userattestation.php. The manipulation of the argument web_img leads to unrestricted upload. The…

  • CVE-2024-4019MedApr 20, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical has been found in Byzoro Smart S80 Management Platform up to 20240411. Affected is an unknown function of the file /importhtml.php. The manipulation of the argument sql leads to deserialization. It is possible to launch the attack remotely.…

  • CVE-2024-3346MedApr 5, 2024
    risk 0.41cvss 6.3epss 0.49

    A vulnerability was found in Byzoro Smart S80 up to 20240328. It has been declared as critical. This vulnerability affects unknown code of the file /log/webmailattach.php. The manipulation of the argument mail_file_path leads to os command injection. The attack can be initiated…

  • CVE-2024-3521MedApr 9, 2024
    risk 0.31cvss 4.7epss 0.01

    A vulnerability was found in Byzoro Smart S80 Management Platform up to 20240317. It has been rated as critical. Affected by this issue is some unknown functionality of the file /useratte/userattestation.php. The manipulation of the argument web_img leads to unrestricted upload.…

  • CVE-2024-0939Jan 26, 2024
    risk 0.07cvss epss 0.44

    A vulnerability has been found in Byzoro Smart S210 Management Platform up to 20240117 and classified as critical. This vulnerability affects unknown code of the file /Tool/uploadfile.php. The manipulation of the argument file_upload leads to unrestricted upload. The attack can…

  • CVE-2023-4120Aug 3, 2023
    risk 0.05cvss epss 0.81

    A vulnerability was found in Byzoro Smart S85F Management Platform up to 20230722 and classified as critical. This issue affects some unknown processing of the file importhtml.php. The manipulation of the argument sql leads to command injection. The attack may be initiated…

  • CVE-2023-5684Oct 21, 2023
    risk 0.01cvss epss 0.78

    A vulnerability was found in Byzoro Smart S85F Management Platform up to 20231012. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /importexport.php. The manipulation leads to os command injection. The attack can be…

  • CVE-2023-5683Oct 21, 2023
    risk 0.01cvss epss 0.18

    A vulnerability was found in Byzoro Smart S85F Management Platform up to 20231010 and classified as critical. This issue affects some unknown processing of the file /sysmanage/importconf.php. The manipulation of the argument btn_file_renew leads to os command injection. The…

  • CVE-2024-1918Feb 27, 2024
    risk 0.00cvss epss 0.02

    A vulnerability has been found in Byzoro Smart S42 Management Platform up to 20240219 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /useratte/userattestation.php. The manipulation of the argument hidwel leads to unrestricted…

  • CVE-2024-1254Feb 6, 2024
    risk 0.00cvss epss 0.05

    A vulnerability, which was classified as critical, was found in Byzoro Smart S20 Management Platform up to 20231120. This affects an unknown part of the file /sysmanage/sysmanageajax.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the…

  • CVE-2024-1253Feb 6, 2024
    risk 0.00cvss epss 0.02

    A vulnerability, which was classified as critical, has been found in Byzoro Smart S40 Management Platform up to 20240126. Affected by this issue is some unknown functionality of the file /useratte/web.php of the component Import Handler. The manipulation of the argument…

  • CVE-2024-0716Jan 19, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as problematic has been found in Byzoro Smart S150 Management Platform V31R02B15. This affects an unknown part of the file /log/download.php of the component Backup File Handler. The manipulation leads to information disclosure. It is possible to…

  • CVE-2024-0712Jan 19, 2024
    risk 0.00cvss epss 0.04

    A vulnerability was found in Byzoro Smart S150 Management Platform V31R02B15. It has been classified as critical. Affected is an unknown function of the file /useratte/inc/userattea.php. The manipulation leads to improper access controls. It is possible to launch the attack…

  • CVE-2024-0300Jan 8, 2024
    risk 0.00cvss epss 0.06

    A vulnerability was found in Byzoro Smart S150 Management Platform up to 20240101. It has been rated as critical. Affected by this issue is some unknown functionality of the file /useratte/userattestation.php of the component HTTP POST Request Handler. The manipulation of the…

  • CVE-2023-7039Dec 21, 2023
    risk 0.00cvss epss 0.14

    A vulnerability classified as critical has been found in Byzoro S210 up to 20231210. Affected is an unknown function of the file /importexport.php. The manipulation of the argument sql leads to injection. It is possible to launch the attack remotely. The exploit has been…

  • CVE-2023-6577Dec 7, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in Byzoro PatrolFlow 2530Pro up to 20231126. It has been rated as problematic. This issue affects some unknown processing of the file /log/mailsendview.php. The manipulation of the argument file with the input /boot/phpConfig/tb_admin.txt leads to path…

  • CVE-2023-6576Dec 7, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in Byzoro S210 up to 20231123. It has been declared as critical. This vulnerability affects unknown code of the file /Tool/uploadfile.php of the component HTTP POST Request Handler. The manipulation of the argument file_upload leads to unrestricted…