Lucene search

Solarview Compact Firmware Security Vulnerabilities

cve

CVE-2022-40881

SolarView Compact 6.00 was discovered to contain a command injection vulnerability via network_test.php

9.8CVSS

9.8AI Score

0.961EPSS

2022-11-17 04:15 AM

cve

CVE-2022-44354

SolarView Compact 4.0 and 5.0 is vulnerable to Unrestricted File Upload via a crafted php file.

9.8CVSS

9.1AI Score

0.003EPSS

2022-11-29 05:15 PM

cve

CVE-2022-44355

SolarView Compact 7.0 is vulnerable to Cross-site Scripting (XSS) via /network_test.php.

6.1CVSS

6AI Score

0.001EPSS

2022-11-29 05:15 PM

cve

CVE-2023-23333

There is a command injection vulnerability in SolarView Compact through 6.00, attackers can execute commands by bypassing internal restrictions through downloader.php.

9.8CVSS

9.7AI Score

0.963EPSS

2023-02-06 10:15 PM

cve

CVE-2023-29919

SolarView Compact <= 6.0 is vulnerable to Insecure Permissions. Any file on the server can be read or modified because texteditor.php is not restricted.

9.1CVSS

9AI Score

0.479EPSS

2023-05-23 01:15 AM

cve

CVE-2023-40924

SolarView Compact < 6.00 is vulnerable to Directory Traversal.

7.5CVSS

7.4AI Score

0.001EPSS

2023-09-08 01:15 PM

cve

CVE-2023-46509

An issue in Contec SolarView Compact v.6.0 and before allows an attacker to execute arbitrary code via the texteditor.php component.

9.8CVSS

9.6AI Score

0.001EPSS

2023-10-27 09:15 PM