16 matches found
EUVD-2016-2272
Malware in sbrugna...
EUVD-2021-8038
Malicious code in bioql PyPI...
CVE-2021-20620
Cross-site scripting vulnerability in Aterm WF800HP firmware Ver1.0.9 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors...
CVE-2021-20620
Cross-site scripting vulnerability in Aterm WF800HP firmware Ver1.0.9 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors...
CVE-2021-20620
Cross-site scripting vulnerability in Aterm WF800HP firmware Ver1.0.9 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors...
Cross site scripting
Cross-site scripting vulnerability in Aterm WF800HP firmware Ver1.0.9 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors...
CVE-2021-20620
CVE-2021-20620 affects NEC Aterm WF800HP firmware. The issue is a Cross-site Scripting (CWE-79) vulnerability in firmware versions 1.0.9 and earlier that allows a remote attacker to inject arbitrary scripts via unspecified vectors, potentially executing in the user’s web browser. Public sources (...
CVE-2021-20620
Cross-site scripting vulnerability in Aterm WF800HP firmware Ver1.0.9 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors...
Multiple vulnerabilities in Aterm WF800HP, Aterm WG2600HP, and Aterm WG2600HP2
Overview Aterm WF800HP, Aterm WG2600HP, and Aterm WG2600HP2 provided by NEC Corporation contain multiple vulnerabilities. Aterm WF800HP: Cross-site Scripting CWE-79 - CVE-2021-20620 Aterm WG2600HP and Aterm WG2600HP2: Improper Access Control CWE-284 - CVE-2017-12575 Cross-Site Request Forgery...
JVN#38248512: Multiple vulnerabilities in Aterm WF800HP, Aterm WG2600HP, and Aterm WG2600HP2
Aterm WF800HP, Aterm WG2600HP, and Aterm WG2600HP2 provided by NEC Corporation contain multiple vulnerabilities listed below. Aterm WF800HP: Cross-site Scripting CWE-79 - CVE-2021-20620 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS...
Cross-Site Scripting Vulnerability in Multiple NEC Aterm Products
The NEC Aterm WG2600HP and others are a wireless router from NEC Corporation of Japan. A cross-site scripting vulnerability exists in multiple Aterm products, which stems from a lack of proper validation of client-side data by the WEB application. The vulnerability can be exploited by an attacker...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability on NEC Aterm WF800HP devices with firmware 1.0.17 and earlier allows remote attackers to hijack the authentication of arbitrary users...
CVE-2016-1168
Cross-site request forgery CSRF vulnerability on NEC Aterm WF800HP devices with firmware 1.0.17 and earlier allows remote attackers to hijack the authentication of arbitrary users...
NEC Aterm WF800HP Cross-Site Request Forgery Vulnerability
The NEC Aterm WF800HP is a wireless router product from Nippon Electric NEC. A cross-site request forgery vulnerability exists in the NEC Aterm WF800HP using firmware Ver1.0.17 and earlier. An attacker can exploit this vulnerability to perform an unauthorized operation by tricking a logged-in use...
Aterm WF800HP vulnerable to cross-site request forgery
Overview Aterm WF800HP provided by NEC Corporation contains a cross-site request forgery vulnerability CWE-352. Satoshi Ogawa of Mitsui Bussan Secure Directions,Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership...
JVN#07818796: Aterm WF800HP vulnerable to cross-site request forgery
Aterm WF800HP provided by NEC Corporation contains a cross-site request forgery vulnerability CWE-352. Impact If a user views a malicious page while logged in, unintended operations may be performed. Solution Update the Firmware Update to the latest firmware version according to the information...