Vulnerabilities > Planex > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-26 | CVE-2024-45372 | Cross-Site Request Forgery (CSRF) vulnerability in Planex Mzk-Dp300N Firmware MZK-DP300N firmware versions 1.04 and earlier contains a cross-site request forger vulnerability. | 6.5 |
| 2024-09-26 | CVE-2024-45836 | Cross-site Scripting vulnerability in Planex products Cross-site scripting vulnerability exists in the web management page of PLANEX COMMUNICATIONS network cameras. | 6.1 |
| 2023-02-14 | CVE-2023-22370 | Cross-site Scripting vulnerability in Planex Cs-Wmv02G Stored cross-site scripting vulnerability in Wired/Wireless LAN Pan/Tilt Network Camera CS-WMV02G all versions allows a network-adjacent authenticated attacker to inject an arbitrary script. | 5.2 |
| 2023-02-14 | CVE-2023-22376 | Cross-site Scripting vulnerability in Planex Cs-Wmv02G Firmware Reflected cross-site scripting vulnerability in Wired/Wireless LAN Pan/Tilt Network Camera CS-WMV02G all versions allows a remote unauthenticated attacker to inject arbitrary script to inject an arbitrary script. | 6.1 |
| 2022-09-08 | CVE-2022-38399 | Improper Authentication vulnerability in Planex Cs-Qr10 Firmware and Cs-Qr20 Firmware Missing protection mechanism for alternate hardware interface in SmaCam CS-QR10 all versions and SmaCam Night Vision CS-QR20 all versions allows an attacker to execute an arbitrary OS command by having the product connect to the product's specific serial connection | 6.8 |