Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-24845

Malware in sbrugna...

10CVSS9.4AI score0.19875EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 12:3 a.m.4 views

CVE-2024-4547

A SQLi vulnerability exists in Delta Electronics DIAEnergie v1.10.1.8610 and prior when CEBC.exe processes a 'RecalculateScript' message, which is splitted into 4 fields using the '' character as the separator. An unauthenticated remote attacker can perform SQLi via the fourth field...

9.8CVSS7.1AI score0.01895EPSS
Exploits1References1
OSV
OSV
added 2022/11/17 11:15 p.m.2 views

CVE-2022-43506

SQL Injection in HandlerTagKID.ashx in Delta Electronics DIAEnergie versions prior to v1.9.02.001 allows an attacker to inject SQL queries via Network...

8.8CVSS5.8AI score0.00685EPSS
Exploits0References1
OSV
OSV
added 2022/03/29 5:15 p.m.4 views

CVE-2022-26666

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in HandlerECC.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

9.8CVSS6AI score0.01172EPSS
Exploits0References1
NVD
NVD
added 2021/12/22 7:15 p.m.15 views

CVE-2021-23228

DIAEnergie Version 1.7.5 and prior is vulnerable to a reflected cross-site scripting attack through error pages that are returned by “.NET Request.QueryString”...

7.5CVSS0.00603EPSS
Exploits0References1
NVD
NVD
added 2021/12/22 7:15 p.m.17 views

CVE-2021-31558

DIAEnergie Version 1.7.5 and prior is vulnerable to stored cross-site scripting when an unauthenticated user injects arbitrary code into the parameter “descr” of the script “DIAEhierarchyHandler.ashx”...

6.5CVSS0.10562EPSS
Exploits0References1
Prion
Prion
added 2021/12/22 7:15 p.m.18 views

Cross site scripting

DIAEnergie Version 1.7.5 and prior is vulnerable to stored cross-site scripting when an unauthenticated user injects arbitrary code into the parameter “name” of the script “DIAEHandlerAlarmGroup.ashx”...

4.3CVSS6.9AI score0.00657EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2021/08/30 6:15 p.m.20 views

CVE-2021-38391

A Blind SQL injection vulnerability exists in the /DataHandler/AM/AMHandler.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter type before using it as part of an SQL query. A...

10CVSS0.03455EPSS
Exploits0References1
Rows per page
Query Builder