Jeesns 1.4.2 - Cross-Site Scripting

Jeesns 1.4.2 is vulnerable to reflected cross-site scripting that allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the system error message's text field. id: CVE-2020-19282 info: name: Jeesns 1.4.2 - Cross-Site Scripting author: pikpikcu severity: medium...

CVE-2020-19282

A reflected cross-site scripting XSS vulnerability in Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the system error message's text field...

CVE-2019-19282

A vulnerability has been identified in OpenPCS 7 V8.1 All versions, OpenPCS 7 V8.2 All versions, OpenPCS 7 V9.0 All versions V9.0 Upd3, SIMATIC BATCH V8.1 All versions, SIMATIC BATCH V8.2 All versions V8.2 Upd12, SIMATIC BATCH V9.0 All versions V9.0 SP1 Upd5, SIMATIC NET PC Software V14 All...

Rockwell (CVE-2018-19282) (deprecated)

This plugin has been deprecated as PowerFlex AC Drives are not currently supported. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2022/05/19...

CVE-2020-19282

creationtimestamp| type| source ---|---|--- 2021-09-10 02:30:15+00:00| seen| https://t.me/cibsecurity/28647...

CVE-2020-19282

Jeesns 1.4.2 is affected by a reflected cross-site scripting (XSS) vulnerability in the system error message text field. The issue allows an attacker to inject and execute arbitrary web scripts or HTML in a victim’s browser, potentially enabling session hijacking or data exposure. Root cause is a...

CVE-2019-19282

A vulnerability has been identified in OpenPCS 7 V8.1 All versions, OpenPCS 7 V8.2 All versions, OpenPCS 7 V9.0 All versions V9.0 Upd3, SIMATIC BATCH V8.1 All versions, SIMATIC BATCH V8.2 All versions V8.2 Upd12, SIMATIC BATCH V9.0 All versions V9.0 SP1 Upd5, SIMATIC NET PC Software V14 All...

CVE-2019-19282

CVE-2019-19282 describes an incorrect calculation of buffer size (CWE-131) that allows a remote attacker to cause a denial-of-service on Siemens industrial software when encrypted communication is enabled. Exploitation requires network access and no privileges/UI. Affected products span OpenPCS 7...

CVE-2019-19282

A vulnerability has been identified in OpenPCS 7 V8.1 All versions, OpenPCS 7 V8.2 All versions, OpenPCS 7 V9.0 All versions V9.0 Upd3, SIMATIC BATCH V8.1 All versions, SIMATIC BATCH V8.2 All versions V8.2 Upd12, SIMATIC BATCH V9.0 All versions V9.0 SP1 Upd5, SIMATIC NET PC Software V14 All...

CVE-2018-19282

Rockwell Automation PowerFlex 525 AC Drives 5.001 and earlier allow remote attackers to cause a denial of service by crashing the Common Industrial Protocol CIP network stack. The vulnerability allows the attacker to crash the CIP in a way that it does not accept new connections, but keeps the...

CVE-2018-19282

Summary: CVE-2018-19282 affects Rockwell Automation PowerFlex 525 AC Drives (version 5.001 and earlier). The root cause is improper handling of CIP/EtherNet/IP packets, allowing a remote, unauthenticated attacker to crash the CIP network stack and cause a denial of service. This crash prevents ne...

Critical Rockwell Automation Bug in Drive Component Puts IIoT Plants at Risk

A critical denial-of-service DoS vulnerability has been found in a Rockwell Automation industrial drive, which is a logic-controlled mechanical component used in industrial systems to manage industrial motors. The vulnerability was identified in Rockwell Automation’s PowerFlex 525 drive component...