Vulnerabilities > Anglers NET > High

DATE CVE VULNERABILITY TITLE RISK
2020-01-06 CVE-2019-5990 Insufficiently Protected Credentials vulnerability in Anglers-Net CGI An-Anlyzer 20190624
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allow remote attackers to obtain a login password via HTTP referer.
network
low complexity
anglers-net CWE-522
7.5
7.5
2020-01-06 CVE-2019-5987 OS Command Injection vulnerability in Anglers-Net CGI An-Anlyzer 20190624
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote authenticated attackers to execute arbitrary OS commands via the Management Page.
network
low complexity
anglers-net CWE-78
8.8
8.8