EUVD-2023-37442

Malicious code in bioql PyPI...

EUVD-2023-37441

Malicious code in bioql PyPI...

CVE-2023-33277

The web interface of Gira Giersiepen Gira KNX/IP-Router 3.1.3683.0 and 3.3.8.0 allows a remote attacker to read sensitive files via directory-traversal sequences in the URL...

CVE-2023-33276

The web interface of Gira Giersiepen Gira KNX/IP-Router 3.1.3683.0 and 3.3.8.0 responds with a "404 - Not Found" status code if a path is accessed that does not exist. However, the value of the path is reflected in the response. As the application will reflect the supplied path without...

Cross site scripting

The web interface of Gira Giersiepen Gira KNX/IP-Router 3.1.3683.0 and 3.3.8.0 responds with a "404 - Not Found" status code if a path is accessed that does not exist. However, the value of the path is reflected in the response. As the application will reflect the supplied path without...

CVE-2023-33276

The web interface of Gira Giersiepen Gira KNX/IP-Router 3.1.3683.0 and 3.3.8.0 responds with a "404 - Not Found" status code if a path is accessed that does not exist. However, the value of the path is reflected in the response. As the application will reflect the supplied path without...

CVE-2023-33276

The CVE-2023-33276 issue affects Gira KNX/IP-Router web interface versions 3.1.3683.0–3.3.8.0, where reflecting a non-existent path in the HTTP response without HTML encoding enables reflective cross-site scripting (XSS). Documented by multiple sources (e.g., Red Hat, PRion/PT Security) note the ...

CVE-2023-33276

The web interface of Gira Giersiepen Gira KNX/IP-Router 3.1.3683.0 and 3.3.8.0 responds with a "404 - Not Found" status code if a path is accessed that does not exist. However, the value of the path is reflected in the response. As the application will reflect the supplied path without...

Gira KNX/IP-Router 跨站脚本漏洞

The Gira KNX/IP-Router is a secure router for public buildings from Gira. A security vulnerability exists in the Gira KNX/IP-Router versions 3.1.3683.0 and 3.3.8.0, which stems from the fact that the application will reflect the supplied paths without the associated HTML coding, making it...

Gira KNX/IP-Router 路径遍历漏洞

The Gira KNX/IP-Router is a secure router for public buildings from Gira. A security vulnerability exists in Gira KNX/IP-Router versions 3.1.3683.0 and 3.3.8.0, which stems from a vulnerability that allows an attacker to read sensitive files via a directory traversal sequence in a URL...

PT-2023-24261 · Gira Giersiepen · Gira Knx/Ip-Router

Name of the Vulnerable Software and Affected Versions: Gira Giersiepen Gira KNX/IP-Router versions 3.1.3683.0 through 3.3.8.0 Description: The web interface of the affected device allows a remote attacker to read sensitive files via directory-traversal sequences in the URL. This issue enables...