Vulnerabilities > Advantech > R Seenet

DATE CVE VULNERABILITY TITLE RISK
2021-12-22 CVE-2021-21936 SQL Injection vulnerability in Advantech R-Seenet 2.4.15
A specially-crafted HTTP request can lead to SQL injection.
network
low complexity
advantech CWE-89
8.8
8.8
2021-12-22 CVE-2021-21937 SQL Injection vulnerability in Advantech R-Seenet 2.4.15
A specially-crafted HTTP request can lead to SQL injection.
network
low complexity
advantech CWE-89
6.5
6.5
2021-08-05 CVE-2021-21805 OS Command Injection vulnerability in Advantech R-Seenet 2.4.12
An OS Command Injection vulnerability exists in the ping.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020).
network
low complexity
advantech CWE-78
critical
 9.8
9.8
2021-07-16 CVE-2021-21799 Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12
Cross-site scripting vulnerabilities exist in the telnet_form.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020).
network
low complexity
advantech CWE-79
6.1
6.1
2021-07-16 CVE-2021-21800 Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12
Cross-site scripting vulnerabilities exist in the ssh_form.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020).
network
low complexity
advantech CWE-79
6.1
6.1
2021-07-16 CVE-2021-21801 Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications.
network
low complexity
advantech CWE-79
6.1
6.1
2021-07-16 CVE-2021-21802 Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications.
network
low complexity
advantech CWE-79
6.1
6.1
2021-07-16 CVE-2021-21803 Cross-site Scripting vulnerability in Advantech R-Seenet 2.4.12
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications.
network
low complexity
advantech CWE-79
6.1
6.1
2021-07-16 CVE-2021-21804 Inclusion of Functionality from Untrusted Control Sphere vulnerability in Advantech R-Seenet 2.4.12
A local file inclusion (LFI) vulnerability exists in the options.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020).
network
low complexity
advantech CWE-829
critical
 9.8
9.8
2020-10-20 CVE-2020-25157 SQL Injection vulnerability in Advantech R-Seenet
The R-SeeNet webpage (1.5.1 through 2.4.10) suffers from SQL injection, which allows a remote attacker to invoke queries on the database and retrieve sensitive information.
network
low complexity
advantech CWE-89
7.5
7.5