Skip to main content
CVE-2019-13352 CRITICAL POC Act Now

WolfVision Cynap before 1.30j uses a static, hard-coded cryptographic secret for generating support PINs for the 'forgot password' feature. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Cynap
NVD
CVSS 3.0
9.8
EPSS
2.9%
CVE-2019-12971 CRITICAL POC Act Now

BKS EBK Ethernet-Buskoppler Pro before 3.01 allows Unrestricted Upload of a File with a Dangerous Type. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Bks Ebk Ethernet Buskoppler Pro Firmware
NVD
CVSS 3.0
9.8
EPSS
2.2%
CVE-2019-13144 CRITICAL Act Now

myTinyTodo 1.3.3 through 1.4.3 allows CSV Injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection Mytinytodo
NVD
CVSS 3.1
9.8
EPSS
1.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy