VYPR
Vendor

Ecessa

Products
3
CVEs
4
Across products
4
Status
Private

Products

3

Recent CVEs

4
  • CVE-2018-13032HigJul 1, 2018
    risk 0.60cvss 8.8epss 0.02

    ECESSA ShieldLink SL175EHQ 10.7.4 devices have CSRF to add superuser accounts via the cgi-bin/pl_web.cgi/util_configlogin_act URI.

  • CVE-2018-25152MedDec 24, 2025
    risk 0.34cvss 5.3epss 0.00

    Ecessa Edge EV150 10.7.4 contains a cross-site request forgery vulnerability that allows attackers to create administrative user accounts without authentication. Attackers can craft a malicious web page with a form that submits requests to the…

  • CVE-2018-25150MedDec 24, 2025
    risk 0.34cvss 5.3epss 0.00

    Ecessa ShieldLink SL175EHQ 10.7.4 contains a cross-site request forgery vulnerability that allows attackers to create administrative user accounts without authentication. Attackers can craft a malicious web page with a hidden form to add a superuser account by tricking a…

  • CVE-2018-25151MedDec 24, 2025
    risk 0.28cvss 4.3epss 0.00

    Ecessa WANWorx WVR-30 versions before 10.7.4 contain a cross-site request forgery vulnerability that allows attackers to perform administrative actions without request validation. Attackers can craft a malicious web page with a hidden form to create a new superuser account by…