RaidSonic IB-NAS5220 And IB-NAS4220-B Multiple Security Vulnerabilities Network Vulnerability

Summary

RaidSonic IB-NAS5220 and IB-NAS422-B are prone to multiple security vulnerabilities, including: 1. An authentication-bypass vulnerability 2. An HTML-injection vulnerability 3. A command-injection vulnerability The attacker may leverage these issues to bypass certain security restrictions and perform unauthorized actions or execute HTML and script code in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials, control how the site is rendered to the user, or inject and execute arbitrary commands.

References

http://www.securityfocus.com/bid/57958

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 9.0 AV:N/AC:L/Au:N/C:C/I:P/A:P

Related Vulnerabilities

AdMentor Login Flaw
AdPeeps 'index.php' Multiple Vulnerabilities.
A-Blog 'sources/search.php' SQL Injection Vulnerability
AudiStat multiple vulnerabilities
ArticleFR CMS 'id' Parameter SQL Injection Vulnerability

RaidSonic IB-NAS5220 and IB-NAS4220-B Multiple Security Vulnerabilities

Take action and discover your vulnerabilities