cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-29655,https://securityvulnerability.io/vulnerability/CVE-2020-29655,Injection Vulnerability in RT-AC88U Download Master by Asus,"An injection vulnerability exists in the RT-AC88U Download Master prior to version 3.1.0.108, which allows an attacker to manipulate the login page's appearance. Specifically, accessing the URL Main_Login.asp?flag=1&productname=FOOBAR&url=/downloadmaster/task.asp can lead to the unintended display of the 'productname' parameter's value in the title, enabling potential text injection attacks. This flaw could be exploited to mislead users or facilitate further malicious activities.",Asus,Rt-ac88u Firmware,7.5,HIGH,0.0005799999926239252,false,,false,false,false,,,false,false,,2020-12-09T08:00:58.000Z,0
CVE-2020-29656,https://securityvulnerability.io/vulnerability/CVE-2020-29656,Information Disclosure Vulnerability in RT-AC88U by ASUS,"An information disclosure vulnerability affects the ASUS RT-AC88U Download Master service prior to version 3.1.0.108. This vulnerability allows unauthorized access to specific functionalities through direct access to a URL. By exploiting this flaw, attackers can access sensitive data and expose it to potential misuse. With a known public exploit making the attack relatively straightforward, it’s critical for users to update their firmware to the latest version to mitigate this risk.",Asus,Rt-ac88u Firmware,7.5,HIGH,0.0014100000262260437,false,,false,false,false,,,false,false,,2020-12-09T08:00:42.000Z,0