CVE-2022-44355
https://notcve.org/view.php?id=CVE-2022-44355
SolarView Compact 7.0 is vulnerable to Cross-site Scripting (XSS) via /network_test.php. SolarView Compact 7.0 es vulnerable a Cross-site Scripting (XSS) a través de /network_test.php. • https://github.com/strik3r0x1/Vulns/blob/main/SolarView%20Compact%20XSS%20up%20to%207.0.md • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2022-40881
https://notcve.org/view.php?id=CVE-2022-40881
SolarView Compact 6.00 was discovered to contain a command injection vulnerability via network_test.php Se descubrió que SolarView Compact 6.00 contiene una vulnerabilidad de inyección de comandos a través de network_test.php • https://github.com/yilin1203/CVE-2022-40881 https://github.com/Timorlover/SolarView_Compact_6.0_rce_via_network_test.php • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •