cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2018-19659,https://securityvulnerability.io/vulnerability/CVE-2018-19659,,An exploitable authenticated command-injection vulnerability exists in the web server functionality of Moxa NPort W2x50A products with firmware before 2.2 Build_18082311. A specially crafted HTTP POST request to /goform/net_WebPingGetValue can result in running OS commands as the root user. This is similar to CVE-2017-12120.,Moxa,Nport W2x50a Firmware,8.8,HIGH,0.001019999966956675,false,,false,false,false,,,false,false,,2018-12-06T23:00:00.000Z,0
CVE-2018-19660,https://securityvulnerability.io/vulnerability/CVE-2018-19660,,An exploitable authenticated command-injection vulnerability exists in the web server functionality of Moxa NPort W2x50A products with firmware before 2.2 Build_18082311. A specially crafted HTTP POST request to /goform/webSettingProfileSecurity can result in running OS commands as the root user.,Moxa,Nport W2x50a Firmware,8.8,HIGH,0.001019999966956675,false,,false,false,false,,,false,false,,2018-12-06T23:00:00.000Z,0