Vulnerability Category - 越权访问 - Unauthorized access - Knownsec Seebug Vulnerability Platform

Vulnerability Category — Unauthorized access

Chinese name:: 越权访问

Related Vulnerabilities

SSV ID	Submit Time	Level	Name	Status	Popularity \| Comments
SSV-99608	2022-11-21		vm2 沙箱逃逸漏洞（CVE-2022-36067）		3348 \| 0
SSV-99576	2022-09-06		EasyCVR智能边缘网关任意管理员用户添加漏洞		2575 \| 0
SSV-99447	2022-01-11		ESXi OpenSLP 越界读取漏洞(CVE-2021-21995)		2162 \| 0
SSV-99386	2021-11-17		Hadoop Yarn RPC未授权访问漏洞		3721 \| 0
SSV-99372	2021-10-25		H2 Database Web Console 未授权访问基础信息		2653 \| 0
SSV-99370	2021-10-25		kafka未授权访问		5271 \| 0
SSV-99362	2021-09-30		hadoop yarn ResourceManager 页面未授权访问		3279 \| 0
SSV-99257	2021-05-24		腾达 TendaN4 未授权访问漏洞（CNVD-2021-24481）		6216 \| 0
SSV-99199	2021-04-08		天擎越权访问漏洞		7026 \| 0
SSV-98442	2020-10-26		Siemens SIMATIC RTLS Locating Manager		8731 \| 0
SSV-98424	2020-10-23		Advantech WebAccess Node (CVE-2020-16202)		9271 \| 0
SSV-98423	2020-10-23		Philips Clinical Collaboration Platform		9311 \| 0
SSV-98421	2020-10-23		GE Digital APM Classic		8865 \| 0
SSV-98416	2020-10-23		Johnson Controls Sensormatic Electronics American Dynamics victor Web (CVE-2020-9048)		8831 \| 0
SSV-98404	2020-10-22		Capsule Technologies SmartLinx Neuron 2 Protection Mechanism Failure（CVE-2019-5024）		8682 \| 0
SSV-98402	2020-10-22		Hitachi ABB Power Grids XMC20 Multiservice-Multiplexer Improper Authentication（CVE-2018-10933）		8871 \| 0
SSV-98363	2020-09-02		D-Link DIR-867，DIR-878和DIR-882 路由器身份绕过漏洞		10777 \| 1
SSV-98360	2020-08-24		通达OA 11.5 未授权访问漏洞		12594 \| 0
SSV-98351	2020-08-18		Apache Shiro 权限绕过漏洞（CVE-2020-13933）		12761 \| 0
SSV-98350	2020-08-18		Config Upload-未授权替换固件漏洞（CVE-2019-19142）		11971 \| 0
SSV-98348	2020-08-17		天融信数据防泄漏系统越权修改密码漏洞		12479 \| 0
SSV-98340	2020-08-17		天翼创维awifi路由器存在多处未授权访问漏洞（CVE-2019-12862）		11260 \| 0
SSV-97533	2018-09-14		Huawei LTE router unauthenticated resource access		4023 \| 0
SSV-97494	2018-08-22		EduSoho企培版v3.5.4越权访问漏洞		4813 \| 1
SSV-97375	2018-06-26		Baseon Lantronix MSS IOT/Cameras Device Servers telnet-Service NO require password authentication		5471 \| 0
SSV-97374	2018-06-26		Sollae Systems (Serial-Ethernet-Module/Remote-I/O-Device-Server etc.) Telnet-Service Unauthorized access		5036 \| 0
SSV-97373	2018-06-26		BWS Systems HA-Bridge is Bridge Application for IoTAnd They do not require any certification		5034 \| 0
SSV-97372	2018-06-26		Emerson Liebert IntelliSlot Web Card family delivers enhanced communications and control to Liebert UPS,AC Power and Thermal Management systems Unauthorized access		5819 \| 0
SSV-97284	2018-05-10		DJI Spark hijacking		3543 \| 0
SSV-97211	2018-04-03		Drupal 8 – CVE-2017-6926漏洞详解		4662 \| 0
SSV-97202	2018-03-25		Etcd REST API 未授权访问漏洞		6587 \| 0
SSV-97186	2018-03-20		UNAUTHENTICATED START OF TELNETD ON TENDA AC15 ROUTER		2785 \| 0
SSV-97163	2018-03-08		Selenium Server 未授权访问漏洞		3586 \| 0
SSV-97079	2018-01-11		Sophos XG from Unauthenticated Persistent XSS to Unauthorized Root Access(CVE-2017-18014)		1503 \| 0
SSV-97021	2017-12-27		Trustwave SWG Unauthorized Access		1232 \| 0
SSV-96968	2017-12-11		Emby MediaServer 3.2.5 Password Reset Vulnerability		2164 \| 0
SSV-96909	2017-12-01		CRITICAL CODESYS VULNERABILITIES IN WAGO PFC 200 SERIES		1176 \| 0
SSV-96442	2017-09-12		Hanbanggaoke IP Camera Arbitrary Password Change		1215 \| 0
SSV-93175	2017-06-02		HP JetDirect 未授权访问		4766 \| 1
SSV-93059	2017-04-27		SNMP Incorrect Access Control Vulnerability (CVE 2017-5135)		2891 \| 0
SSV-93018	2017-04-24		Cloudera Manager Unauthenticated configuration download		1465 \| 0
SSV-93016	2017-04-24		Cloudera Manager =< 5.5 Process logs access (CVE-2016-4949)		1227 \| 0
SSV-93012	2017-04-24		Cloudera HUE =< 3.9.0 Enumerating users with an unprivileged account (CVE-2016-4947)		1231 \| 0
SSV-93010	2017-04-24		Apache Ranger =< 0.5.2 allows to download policy definitions without authentication		1556 \| 0
SSV-92789	2017-03-16		Goahead webserver <= 2.1.8 路径绕过敏感文件下载漏洞		2998 \| 0
SSV-92770	2017-03-13		Google Nexus 9 Unauthorized Access to FIQ Debugger（CVE-2017-0510）		1473 \| 0
SSV-92624	2017-01-17		Pirelli DRG A115 ADSL Router - Unauthenticated DNS Change		1918 \| 0
SSV-92623	2017-01-17		Tenda ADSL2/2+ Modem D840R - Unauthenticated DNS Change		1908 \| 0
SSV-92528	2016-11-08		Loopcomm WLAN AP Webserver 未授权访问漏洞		5724 \| 0
SSV-92509	2016-11-01		Industrial Secure Routers EDR-810 / EDR-G902 / EDR-G903 - Insecure Configuration Management		2745 \| 1
SSV-92503	2016-10-28		ZIO ROUTER路由器未授权访问漏洞		3385 \| 0
SSV-92436	2016-09-22		Drupal Core Full config export 配置文件未授权下载漏洞		10069 \| 0
SSV-92430	2016-09-20		Cisco ASA 9.2(3) - 'EXTRABACON' Authentication Bypass		6779 \| 0
SSV-92423	2016-09-18		Inteno EG101R1 VoIP Router - 未授权修改DNS		6304 \| 0
SSV-92421	2016-09-18		PLANET VDR-300NU ADSL Router - 未授权修改DNS		11367 \| 0
SSV-92420	2016-09-18		Tenda ADSL2/2+ Modem 963281TAN - 未授权修改DNS		7029 \| 0
SSV-92351	2016-08-26		连邦行政审批系统 /workplate/xzsp/kqgl/kqsz/kqsz.aspx 越权访问漏洞		5662 \| 0
SSV-92338	2016-08-25		泛微 E-cology /messager/users.data 越权访问漏洞		7485 \| 0
SSV-92285	2016-08-15		KJ65N煤矿远程监控安全预警系统 /configs.aspx 未授权访问漏洞		3216 \| 0
SSV-92130	2016-07-18		皓峰防火墙系统setdomain.php,system.php, setip.php等文件越权访问漏洞		4956 \| 0
SSV-92041	2016-07-06		shopxp网上购物系统 savexpadmin.asp越权漏洞		4978 \| 0
SSV-91958	2016-06-27		Schneider Electric PowerLogic PM8ECC 模块未授权访问漏洞		6831 \| 1
SSV-91914	2016-06-21		DVR监控空口令		3989 \| 0
SSV-91913	2016-06-21		Samsung SCX-4x24 Series 未授权访问		3819 \| 0
SSV-91882	2016-06-18		Sunlinks OA系统 /Common/HRManage/UserList.aspx?Retire=0&Code= 越权访问漏洞		4208 \| 0
SSV-91788	2016-06-09		Meteocontrol WEBlog 多个越权漏洞		6689 \| 0
SSV-91746	2016-06-03		欧姆龙PLS默认端口控制漏洞		4915 \| 0
SSV-91684	2016-05-26		南京擎天政务系统 /jytweb//inc/frame.htm 未授权访问漏洞		5305 \| 0
SSV-91667	2016-05-25		AXIS 2400+ Blade Video Server /view/view.shtml 越权访问漏洞		4846 \| 0
SSV-91597	2016-05-19		CouchDB未授权访问导致的任意系统命令执行漏洞		7409 \| 2
SSV-91489	2016-05-09		东芝e-STUDIO 系列打印机未授权访问漏洞		4874 \| 0
SSV-91487	2016-05-09		海尔300M无线路由器后台未授权访问		2641 \| 0
SSV-91456	2016-05-05		悟空CRM系统 /Public/js/php/file_manager_json.php 越权访问漏洞		3502 \| 0
SSV-91386	2016-04-25		polycom HDX系列设备默认登录控制台无需密码		3763 \| 0
SSV-91378	2016-04-25		东芝打印机未授权访问漏洞		3825 \| 0
SSV-91376	2016-04-25		Netgear Unauthenticated SOAP Password Extractor		3773 \| 0
SSV-91368	2016-04-23		Schneider AS AS-P系列-v1.7及之前版本-权限绕过漏洞		2581 \| 0
SSV-91364	2016-04-23		惠普打印机设备 HP Color LaserJet 系列未授权访问漏洞		2905 \| 0
SSV-91323	2016-04-15		D-Link DWR-932 Firmware 4.00 - Authentication Bypass		1953 \| 0
SSV-91274	2016-04-08		haier wifi300M 无线路由器未授权访问		1770 \| 0
SSV-91208	2016-03-30		IBM Tivoli NetView Access Services权限获取漏洞		1551 \| 0
SSV-91207	2016-03-30		D-Link DWR-932认证绕过		1548 \| 0
SSV-91171	2016-03-26		WordPress BackupBuddy插件-db_1.sql、wp_users.sql-未授权访问漏洞		1685 \| 0
SSV-91164	2016-03-25		D-Link DWR-932 Firmware 4.00 权限绕过		2169 \| 0
SSV-91094	2016-03-19		方维O2O系统后台越权漏洞泄露用户详细地址		1440 \| 0
SSV-90972	2016-03-10		phpyun 4.0版本越权访问漏洞		1734 \| 0
SSV-90938	2016-03-08		天睿电子图书管理系统后台越权访问		2072 \| 0
SSV-90881	2016-03-06		网康 NS-ASG /admin/export_log.php type参数存在越权日志下载		1768 \| 0
SSV-90841	2016-03-01		博贤科技通用型建站系统越权访问漏洞		1559 \| 0
SSV-90769	2016-02-19		RTSP 服务未授权访问漏洞		5150 \| 0
SSV-90745	2016-02-16		ecmall 2.x index.php 修改任意密码漏洞		2460 \| 0
SSV-90730	2016-02-14		西门子S7-300存在权限绕过漏洞		3115 \| 0
SSV-90668	2016-01-28		夏普 Sharp MX-M264FP 复印机未授权访问		1782 \| 0
SSV-90665	2016-01-28		1039家校通 Unauthorized access		1710 \| 0
SSV-90553	2016-01-21		Apache SOLR 未授权访问		2629 \| 0
SSV-90423	2016-01-14		Shop7z admin/lipinadd.asp越权访问		1434 \| 0
SSV-90390	2016-01-13		多款三星打印机未授权访问缺陷		8698 \| 0
SSV-90252	2016-01-09		WP插件Admin Management Xtended 2.4.0 越权操作		2001 \| 0
SSV-90248	2016-01-09		大汉网络 /jcms/interface/ldap/receive.jsp 接口未授权更改密钥		2462 \| 0
SSV-90210	2016-01-06		票友 ERP 管理系统 <=10.5.6 Ajax/users.ashx 未授权访问		1921 \| 0

1
2
3
4
5
6
...
22