C-Data Web Management System vulnerabilities
2 known vulnerabilities affecting c-data/web_management_system.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2022-4257P1CRITICALCVSS 9.8Exploitedvn/a2022-12-01
CVE-2022-4257 [CRITICAL] CWE-707 CVE-2022-4257: A vulnerability was found in C-DATA Web Management System. It has been rated as critical. This issue
A vulnerability was found in C-DATA Web Management System. It has been rated as critical. This issue affects some unknown processing of the file cgi-bin/jumpto.php of the component GET Parameter Handler. The manipulation of the argument hostname leads to argument injection. The attack may be initiated remotely. The exploit has been disclosed to the
nvd
CVE-2023-3305P3HIGHCVSS 7.5v202306072023-06-18
CVE-2023-3305 [HIGH] CWE-284 CVE-2023-3305: A vulnerability was found in C-DATA Web Management System up to 20230607. It has been classified as
A vulnerability was found in C-DATA Web Management System up to 20230607. It has been classified as critical. This affects an unknown part of the file /cgi-bin/jumpto.php?class=user&page=config_save&isphp=1 of the component User Creation Handler. The manipulation of the argument user/newpassword leads to improper access controls. It is possible to initia
nvd