Vulnerability Category - 越权访问 - Unauthorized access - Knownsec Seebug Vulnerability Platform

Vulnerability Category — Unauthorized access

Chinese name:: 越权访问

Related Vulnerabilities

SSV ID	Submit Time	Level	Name	Status	Popularity \| Comments
SSV-98442	2020-10-26		Siemens SIMATIC RTLS Locating Manager		4780 \| 0
SSV-98424	2020-10-23		Advantech WebAccess Node (CVE-2020-16202)		5304 \| 0
SSV-98423	2020-10-23		Philips Clinical Collaboration Platform		5180 \| 0
SSV-98421	2020-10-23		GE Digital APM Classic		5006 \| 0
SSV-98416	2020-10-23		Johnson Controls Sensormatic Electronics American Dynamics victor Web (CVE-2020-9048)		4913 \| 0
SSV-98404	2020-10-22		Capsule Technologies SmartLinx Neuron 2 Protection Mechanism Failure（CVE-2019-5024）		4797 \| 0
SSV-98402	2020-10-22		Hitachi ABB Power Grids XMC20 Multiservice-Multiplexer Improper Authentication（CVE-2018-10933）		4904 \| 0
SSV-98363	2020-09-02		D-Link DIR-867，DIR-878和DIR-882 路由器身份绕过漏洞		6560 \| 1
SSV-98360	2020-08-24		通达OA 11.5 未授权访问漏洞		7803 \| 0
SSV-98351	2020-08-18		Apache Shiro 权限绕过漏洞（CVE-2020-13933）		8386 \| 0
SSV-98350	2020-08-18		Config Upload-未授权替换固件漏洞（CVE-2019-19142）		7654 \| 0
SSV-98348	2020-08-17		天融信数据防泄漏系统越权修改密码漏洞		8068 \| 0
SSV-98340	2020-08-17		天翼创维awifi路由器存在多处未授权访问漏洞（CVE-2019-12862）		6946 \| 0
SSV-97533	2018-09-14		Huawei LTE router unauthenticated resource access		2949 \| 0
SSV-97494	2018-08-22		EduSoho企培版v3.5.4越权访问漏洞		3307 \| 1
SSV-97375	2018-06-26		Baseon Lantronix MSS IOT/Cameras Device Servers telnet-Service NO require password authentication		3244 \| 0
SSV-97374	2018-06-26		Sollae Systems (Serial-Ethernet-Module/Remote-I/O-Device-Server etc.) Telnet-Service Unauthorized access		3018 \| 0
SSV-97373	2018-06-26		BWS Systems HA-Bridge is Bridge Application for IoTAnd They do not require any certification		3020 \| 0
SSV-97372	2018-06-26		Emerson Liebert IntelliSlot Web Card family delivers enhanced communications and control to Liebert UPS,AC Power and Thermal Management systems Unauthorized access		3317 \| 0
SSV-97284	2018-05-10		DJI Spark hijacking		2663 \| 0
SSV-97211	2018-04-03		Drupal 8 – CVE-2017-6926漏洞详解		3338 \| 0
SSV-97202	2018-03-25		Etcd REST API 未授权访问漏洞		3871 \| 0
SSV-97186	2018-03-20		UNAUTHENTICATED START OF TELNETD ON TENDA AC15 ROUTER		1684 \| 0
SSV-97163	2018-03-08		Selenium Server 未授权访问漏洞		1985 \| 0
SSV-97079	2018-01-11		Sophos XG from Unauthenticated Persistent XSS to Unauthorized Root Access(CVE-2017-18014)		581 \| 0
SSV-97021	2017-12-27		Trustwave SWG Unauthorized Access		526 \| 0
SSV-96968	2017-12-11		Emby MediaServer 3.2.5 Password Reset Vulnerability		767 \| 0
SSV-96909	2017-12-01		CRITICAL CODESYS VULNERABILITIES IN WAGO PFC 200 SERIES		453 \| 0
SSV-96442	2017-09-12		Hanbanggaoke IP Camera Arbitrary Password Change		532 \| 0
SSV-93175	2017-06-02		HP JetDirect 未授权访问		2350 \| 1
SSV-93059	2017-04-27		SNMP Incorrect Access Control Vulnerability (CVE 2017-5135)		1494 \| 0
SSV-93018	2017-04-24		Cloudera Manager Unauthenticated configuration download		679 \| 0
SSV-93016	2017-04-24		Cloudera Manager =< 5.5 Process logs access (CVE-2016-4949)		525 \| 0
SSV-93012	2017-04-24		Cloudera HUE =< 3.9.0 Enumerating users with an unprivileged account (CVE-2016-4947)		516 \| 0
SSV-93010	2017-04-24		Apache Ranger =< 0.5.2 allows to download policy definitions without authentication		565 \| 0
SSV-92789	2017-03-16		Goahead webserver <= 2.1.8 路径绕过敏感文件下载漏洞		1869 \| 0
SSV-92770	2017-03-13		Google Nexus 9 Unauthorized Access to FIQ Debugger（CVE-2017-0510）		786 \| 0
SSV-92624	2017-01-17		Pirelli DRG A115 ADSL Router - Unauthenticated DNS Change		1031 \| 0
SSV-92623	2017-01-17		Tenda ADSL2/2+ Modem D840R - Unauthenticated DNS Change		1027 \| 0
SSV-92528	2016-11-08		Loopcomm WLAN AP Webserver 未授权访问漏洞		4868 \| 0
SSV-92509	2016-11-01		Industrial Secure Routers EDR-810 / EDR-G902 / EDR-G903 - Insecure Configuration Management		1821 \| 1
SSV-92503	2016-10-28		ZIO ROUTER路由器未授权访问漏洞		2568 \| 0
SSV-92436	2016-09-22		Drupal Core Full config export 配置文件未授权下载漏洞		8948 \| 0
SSV-92430	2016-09-20		Cisco ASA 9.2(3) - 'EXTRABACON' Authentication Bypass		5946 \| 0
SSV-92423	2016-09-18		Inteno EG101R1 VoIP Router - 未授权修改DNS		5490 \| 0
SSV-92421	2016-09-18		PLANET VDR-300NU ADSL Router - 未授权修改DNS		6948 \| 0
SSV-92420	2016-09-18		Tenda ADSL2/2+ Modem 963281TAN - 未授权修改DNS		5946 \| 0
SSV-92351	2016-08-26		连邦行政审批系统 /workplate/xzsp/kqgl/kqsz/kqsz.aspx 越权访问漏洞		4959 \| 0
SSV-92338	2016-08-25		泛微 E-cology /messager/users.data 越权访问漏洞		5495 \| 0
SSV-92285	2016-08-15		KJ65N煤矿远程监控安全预警系统 /configs.aspx 未授权访问漏洞		2406 \| 0
SSV-92130	2016-07-18		皓峰防火墙系统setdomain.php,system.php, setip.php等文件越权访问漏洞		3882 \| 0
SSV-92041	2016-07-06		shopxp网上购物系统 savexpadmin.asp越权漏洞		4043 \| 0
SSV-91958	2016-06-27		Schneider Electric PowerLogic PM8ECC 模块未授权访问漏洞		5748 \| 1
SSV-91914	2016-06-21		DVR监控空口令		2984 \| 0
SSV-91913	2016-06-21		Samsung SCX-4x24 Series 未授权访问		2832 \| 0
SSV-91882	2016-06-18		Sunlinks OA系统 /Common/HRManage/UserList.aspx?Retire=0&Code= 越权访问漏洞		3050 \| 0
SSV-91788	2016-06-09		Meteocontrol WEBlog 多个越权漏洞		5651 \| 0
SSV-91746	2016-06-03		欧姆龙PLS默认端口控制漏洞		4211 \| 0
SSV-91684	2016-05-26		南京擎天政务系统 /jytweb//inc/frame.htm 未授权访问漏洞		4445 \| 0
SSV-91667	2016-05-25		AXIS 2400+ Blade Video Server /view/view.shtml 越权访问漏洞		4048 \| 0
SSV-91597	2016-05-19		CouchDB未授权访问导致的任意系统命令执行漏洞		5934 \| 2
SSV-91489	2016-05-09		东芝e-STUDIO 系列打印机未授权访问漏洞		3505 \| 0
SSV-91487	2016-05-09		海尔300M无线路由器后台未授权访问		1836 \| 0
SSV-91456	2016-05-05		悟空CRM系统 /Public/js/php/file_manager_json.php 越权访问漏洞		1940 \| 0
SSV-91386	2016-04-25		polycom HDX系列设备默认登录控制台无需密码		2767 \| 0
SSV-91378	2016-04-25		东芝打印机未授权访问漏洞		2518 \| 0
SSV-91376	2016-04-25		Netgear Unauthenticated SOAP Password Extractor		2537 \| 0
SSV-91368	2016-04-23		Schneider AS AS-P系列-v1.7及之前版本-权限绕过漏洞		1538 \| 0
SSV-91364	2016-04-23		惠普打印机设备 HP Color LaserJet 系列未授权访问漏洞		1534 \| 0
SSV-91323	2016-04-15		D-Link DWR-932 Firmware 4.00 - Authentication Bypass		1049 \| 0
SSV-91274	2016-04-08		haier wifi300M 无线路由器未授权访问		615 \| 0
SSV-91208	2016-03-30		IBM Tivoli NetView Access Services权限获取漏洞		667 \| 0
SSV-91207	2016-03-30		D-Link DWR-932认证绕过		685 \| 0
SSV-91171	2016-03-26		WordPress BackupBuddy插件-db_1.sql、wp_users.sql-未授权访问漏洞		670 \| 0
SSV-91164	2016-03-25		D-Link DWR-932 Firmware 4.00 权限绕过		1052 \| 0
SSV-91094	2016-03-19		方维O2O系统后台越权漏洞泄露用户详细地址		554 \| 0
SSV-90972	2016-03-10		phpyun 4.0版本越权访问漏洞		721 \| 0
SSV-90938	2016-03-08		天睿电子图书管理系统后台越权访问		1343 \| 0
SSV-90881	2016-03-06		网康 NS-ASG /admin/export_log.php type参数存在越权日志下载		616 \| 0
SSV-90841	2016-03-01		博贤科技通用型建站系统越权访问漏洞		597 \| 0
SSV-90769	2016-02-19		RTSP 服务未授权访问漏洞		1319 \| 0
SSV-90745	2016-02-16		ecmall 2.x index.php 修改任意密码漏洞		1198 \| 0
SSV-90730	2016-02-14		西门子S7-300存在权限绕过漏洞		1925 \| 0
SSV-90668	2016-01-28		夏普 Sharp MX-M264FP 复印机未授权访问		782 \| 0
SSV-90665	2016-01-28		1039家校通 Unauthorized access		689 \| 0
SSV-90553	2016-01-21		Apache SOLR 未授权访问		1090 \| 0
SSV-90423	2016-01-14		Shop7z admin/lipinadd.asp越权访问		649 \| 0
SSV-90390	2016-01-13		多款三星打印机未授权访问缺陷		7486 \| 0
SSV-90252	2016-01-09		WP插件Admin Management Xtended 2.4.0 越权操作		769 \| 0
SSV-90248	2016-01-09		大汉网络 /jcms/interface/ldap/receive.jsp 接口未授权更改密钥		1334 \| 0
SSV-90210	2016-01-06		票友 ERP 管理系统 <=10.5.6 Ajax/users.ashx 未授权访问		837 \| 0
SSV-90204	2016-01-04		票友 ERP 管理系统 <=10.5.6 未授权访问漏洞		946 \| 0
SSV-90159	2015-12-22		Cisco Linksys EA6100和EA6300 Routers未授权访问漏洞		967 \| 0
SSV-90158	2015-12-22		PHPMailer 'class.phpmailer.php'安全绕过漏洞		808 \| 0
SSV-90140	2015-12-21		Juniper Networks（瞻博网络）未授权访问漏洞		1938 \| 0
SSV-90113	2015-12-15		福建四创预警系统 /TableDataManage/BaseInforQueryContent.aspx 接口未授权访问漏洞		687 \| 0
SSV-89874	2015-11-25		Thinksns cms v4存在越权漏洞		954 \| 0
SSV-89778	2015-11-16		IBM Security Guardium访问权限漏洞		572 \| 0
SSV-89715	2015-11-11		Redis 未授权访问缺陷可轻易导致系统被黑		60060 \| 7
SSV-89692	2015-10-29		Memcached 未授权访问 PoC		4320 \| 1

1
2
3
4
5
6
...
21