Rasilient Pixelstor 5000 Firmware vulnerabilities
3 known vulnerabilities affecting rasilient/pixelstor_5000_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2020-6756P2CRITICALCVSS 9.8PoCv4.0.1580-201506292020-01-09
CVE-2020-6756 [CRITICAL] CWE-78 CVE-2020-6756: languageOptions.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows unauthentic
languageOptions.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows unauthenticated attackers to remotely execute code via the lang parameter.
nvd
CVE-2020-6757P3HIGHCVSS 8.8v4.0.1580-201506292020-01-09
CVE-2020-6757 [HIGH] CWE-78 CVE-2020-6757: contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows authe
contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows authenticated attackers to remotely execute code via the name parameter.
nvd
CVE-2020-6758P4MEDIUMCVSS 6.1v4.0.1580-201506292020-01-09
CVE-2020-6758 [MEDIUM] CWE-79 CVE-2020-6758: A cross-site scripting (XSS) vulnerability in Option/optionsAll.php in Rasilient PixelStor 5000 K:4.
A cross-site scripting (XSS) vulnerability in Option/optionsAll.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows remote attackers to inject arbitrary web script or HTML via the ContentFrame parameter.
nvd