6.1CVSS
6AI Score
0.001EPSS
Castle Rock Computing SNMPc before 2015-12-17 has SQL injection via the sc parameter.
8.8CVSS
9.1AI Score
0.001EPSS
nodeimp.exe in Castle Rock SNMPc before 9.0.12.1 and 10.x before 10.0.9 has a stack-based buffer overflow via a long variable string in a Map Objects text file.
7.8CVSS
7.7AI Score
0.002EPSS
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There is pervasive CSRF.
8.8CVSS
8.6AI Score
0.001EPSS
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive information via info.php4.
7.5CVSS
7.2AI Score
0.022EPSS
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive credential information from backup files.
7.5CVSS
7.3AI Score
0.026EPSS
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There are multiple persistent (stored) and reflected XSS vulnerabilities.
5.4CVSS
5.3AI Score
0.001EPSS
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It includes the username and password values in cleartext within each request's cookie value.
7.5CVSS
7.6AI Score
0.005EPSS