Skip to main content

Ismartgate Pro Firmware

11 CVEs product

Monthly

CVE-2020-13119 HIGH POC This Week

ismartgate PRO 1.5.9 is vulnerable to clickjacking. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Ismartgate Pro Firmware
NVD
CVSS 3.1
8.1
EPSS
0.8%
CVE-2020-12843 CRITICAL POC Act Now

ismartgate PRO 1.5.9 is vulnerable to malicious file uploads via the form for uploading sounds to garage doors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Ismartgate Pro Firmware
NVD
CVSS 3.1
9.8
EPSS
1.3%
CVE-2020-12842 CRITICAL POC Act Now

ismartgate PRO 1.5.9 is vulnerable to privilege escalation by appending PHP code to /cron/checkUserExpirationDate.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation PHP Ismartgate Pro Firmware
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2020-12841 MEDIUM POC This Month

ismartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to upload imae files via /index.php. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Ismartgate Pro Firmware
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2020-12840 MEDIUM POC This Month

ismartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to upload sound files via /index.php. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Ismartgate Pro Firmware
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2020-12839 CRITICAL POC Act Now

ismartgate PRO 1.5.9 is vulnerable to privilege escalation by appending PHP code to /cron/checkExpirationDate.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation PHP Ismartgate Pro Firmware
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2020-12838 CRITICAL POC Act Now

ismartgate PRO 1.5.9 is vulnerable to privilege escalation by appending PHP code to /cron/mailAdmin.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation PHP Ismartgate Pro Firmware
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2020-12837 HIGH POC This Week

ismartgate PRO 1.5.9 is vulnerable to malicious file uploads via the form for uploading images to garage doors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Ismartgate Pro Firmware
NVD
CVSS 3.1
7.5
EPSS
0.9%
CVE-2020-12282 HIGH POC This Week

iSmartgate PRO 1.5.9 is vulnerable to CSRF via the busca parameter in the form used for searching for users, accessible via /index.php. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS CSRF PHP Ismartgate Pro Firmware
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2020-12281 MEDIUM POC This Month

iSmartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to create a new user via /index.php. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Ismartgate Pro Firmware
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2020-12280 MEDIUM POC This Month

iSmartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to open/close a specified garage door/gate via /isg/opendoor.php. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Ismartgate Pro Firmware
NVD
CVSS 3.1
6.5
EPSS
0.5%
EPSS 1% CVSS 8.1
HIGH POC This Week

ismartgate PRO 1.5.9 is vulnerable to clickjacking. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Ismartgate Pro Firmware
NVD
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

ismartgate PRO 1.5.9 is vulnerable to malicious file uploads via the form for uploading sounds to garage doors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Ismartgate Pro Firmware
NVD
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

ismartgate PRO 1.5.9 is vulnerable to privilege escalation by appending PHP code to /cron/checkUserExpirationDate.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation PHP Ismartgate Pro Firmware
NVD
EPSS 0% CVSS 6.5
MEDIUM POC This Month

ismartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to upload imae files via /index.php. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Ismartgate Pro Firmware
NVD
EPSS 0% CVSS 6.5
MEDIUM POC This Month

ismartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to upload sound files via /index.php. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Ismartgate Pro Firmware
NVD
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

ismartgate PRO 1.5.9 is vulnerable to privilege escalation by appending PHP code to /cron/checkExpirationDate.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation PHP Ismartgate Pro Firmware
NVD
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

ismartgate PRO 1.5.9 is vulnerable to privilege escalation by appending PHP code to /cron/mailAdmin.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation PHP Ismartgate Pro Firmware
NVD
EPSS 1% CVSS 7.5
HIGH POC This Week

ismartgate PRO 1.5.9 is vulnerable to malicious file uploads via the form for uploading images to garage doors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Ismartgate Pro Firmware
NVD
EPSS 0% CVSS 8.8
HIGH POC This Week

iSmartgate PRO 1.5.9 is vulnerable to CSRF via the busca parameter in the form used for searching for users, accessible via /index.php. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS CSRF PHP +1
NVD
EPSS 0% CVSS 6.5
MEDIUM POC This Month

iSmartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to create a new user via /index.php. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Ismartgate Pro Firmware
NVD
EPSS 0% CVSS 6.5
MEDIUM POC This Month

iSmartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to open/close a specified garage door/gate via /isg/opendoor.php. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Ismartgate Pro Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy