CVE-2025-66602

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The web server accepts access by IP address. When a worm that randomly searches for IP addresses intrudes into the network, it could potentially be attacked by the worm. The affected products and versions are ...

CVE-2025-66603

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The web server accepts the OPTIONS method. An attacker could potentially use this information to carry out other attacks. The affected products and versions are as follows: FAST/TOOLS Packages: RVSVRN, UNSVRN,...

CVE-2025-66605

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Since there are input fields on this webpage with the autocomplete attribute enabled, the input content could be saved in the browser the user is using. The affected products and versions are as follows:...

CVE-2023-42132

FD Application Apr. 2022 Edition Version 9.01 and earlier improperly restricts XML external entity references XXE. By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker...

CVE-2017-5633

Multiple cross-site request forgery CSRF vulnerabilities on the D-Link DI-524 Wireless Router with firmware 9.01 allow remote attackers to 1 change the admin password, 2 reboot the device, or 3 possibly have unspecified other impact via crafted requests to CGI programs...

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities on the D-Link DI-524 Wireless Router with firmware 9.01 allow remote attackers to 1 change the admin password, 2 reboot the device, or 3 possibly have unspecified other impact via crafted requests to CGI programs...

CVE-2017-5633

Multiple cross-site request forgery CSRF vulnerabilities on the D-Link DI-524 Wireless Router with firmware 9.01 allow remote attackers to 1 change the admin password, 2 reboot the device, or 3 possibly have unspecified other impact via crafted requests to CGI programs...

PT-2017-16633 · D Link · D-Link Di-524 Wireless Router

Name of the Vulnerable Software and Affected Versions: D-Link DI-524 Wireless Router version 9.01 Description: The issue affects the D-Link DI-524 Wireless Router, allowing remote attackers to perform certain actions due to multiple cross-site request forgery CSRF vulnerabilities. These actions...

D-link DI-524 Cross-Site Request Forgery Vulnerability

The D-link DI-524 is a wireless router from AUO D-Link. A cross-site request forgery vulnerability exists in D-link DI-524 version 9.01. An attacker can exploit this vulnerability to perform unauthorized operations and gain access to affected applications...

D-Link DI-524 - Cross-Site Request Forgery

D-Link DI-524 - Cross-Site Request Forgery Title: D-Link DI-524 - Cross-Site-Request-Forgery Vulnerability Credit: Felipe Soares de Souza Date: 09/12/2016 Vendor: D-Link Product: D-Link DI-524 Wireless 150 Product link: https://dlink.com.br/produto/di-524150 Version: Firmware 9.01 1- Reboot the...

D-Link DI-524 - Cross-Site Request Forgery

Title: D-Link DI-524 - Cross-Site-Request-Forgery Vulnerability Credit: Felipe Soares de Souza Date: 09/12/2016 Vendor: D-Link Product: D-Link DI-524 Wireless 150 Product link: https://dlink.com.br/produto/di-524150 Version: Firmware 9.01 1- Reboot the device CSRF - Reboot the device 2- Change...

Den Dating 9.01 - (searchmatch.php) SQL Injection Vulnerability

No description provided by source. Scripts Den Dating Demo V9.01searchmatch.php SQL Injection Vulnerability Author: nuclear site: http://www.scriptsden.com SQL vuln: http://localhost/path/searchmatch.php?page=2&sortby=username&sortorder=asc&txtgender=M&txtlookgender=F' union select...

Cross site scripting

Cross-site scripting XSS vulnerability in HP Business Availability Center BAC 9.01 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2012-0132

HP BAC 9.01 on Windows is affected by a remote Cross-Site Scripting (XSS) vulnerability (CVE-2012-0132). The HP Security Bulletin HPSBMU02749 rev.1 notes that the vulnerability could be exploited remotely to run arbitrary script/HTML and provides the mitigation BAC_00772 as the patch. CVSSv2 base...

presto! pagemanager 9.01 - Multiple Vulnerabilities

presto! pagemanager 9.01 - Multiple Vulnerabilities Luigi Auriemma Application: Presto! PageManager http://www.newsoftinc.com/products/productpage.php?PId=5 Versions: = 9.01 Platforms: Windows, MacOSX Bugs: A Heap-overflow B Arbitray files downloading C Denial of Service Exploitation: remote Date...

Computer Associates BrightStor ARCserve Backup MediaSVR.EXE 191缓冲区溢出漏洞

Computer Associates BrightStor ARCserve Backup是一款企业级的备份解决方案。 Computer Associates BrightStor ARCserve Backup处理XDR过程的RPC数据存在设计错误，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 Mediasvr.exe导入的多个DLL在处理使用XDR过程的RPC数据时存在设计错误。4个来自RPC报文的字节作为特殊地址处理（xdrhandlet data会经过多次位移动和字节反转），最后装载到ECX中，在NULL字节后至少8字节NULL的191 0xbf过程成为可利用条件：...

Opera 9.10 - '.jpg' Image DHT Marker Heap Corruption

Opera JPEG processing - Heap corruption vulnerabilities ======================================================= Date..: 8th September 2006 31th October 2006 update 3rd November 2006 update 5th January 2007 public release http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=457...

A very large href attribute value in HTML can crash Opera – Opera Security Advisories

A very large href attribute value in HTML can crash Opera – Opera Security Advisories OPCOM Team | September 5, 2006 Summary A very large href attribute value in a Web page can crash Opera. Severity: Not a security issue Problem description A Web page containing a very large href attribute value...

Opera < 9.01 Malformed 'HREF' DoS

Binary data 3661.prm...

CVE-1999-1242

Technical details (affected product, vulnerable component, exploitability, or patch information) are not publicly provided in the connected documents for CVE-1999-1242; monitor for updates.