11 matches found
EUVD-2014-5296
Malware in sbrugna...
Nordex Control 2 (NC2) SCADA 16 Cross Site Scripting
Nordex NC2 XSS Vulnerability AFFECTED PRODUCTS Nordex Control 2 NC2 SCADA V16 and prior versions. Nordex is a company based in Germany that maintains offices in countries around the world. The affected product, Nordex Control 2, is a web-based SCADA system for wind power plants. According to...
CVE-2015-6477
Multiple cross-site scripting XSS vulnerabilities in the Wind Farm Portal application in Nordex Control 2 NC2 SCADA 16 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the Wind Farm Portal application in Nordex Control 2 NC2 SCADA 16 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2015-6477
Multiple cross-site scripting XSS vulnerabilities in the Wind Farm Portal application in Nordex Control 2 NC2 SCADA 16 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2015-6477
Nordex NC2 (Wind Farm Portal) web-based SCADA NC2, version 16 and earlier, contains multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject and execute arbitrary script in a victim’s browser via the NC2 web interface (notably the login parameter). Root cause is i...
PT-2015-7264
Name of the Vulnerable Software and Affected Versions Nordex Control 2 NC2 SCADA versions 16 and earlier Description The issue concerns multiple cross-site scripting XSS vulnerabilities in the Wind Farm Portal application. These vulnerabilities allow remote attackers to inject arbitrary web scrip...
CVE-2014-5408
Cross-site scripting XSS vulnerability in the login script in the Wind Farm Portal on Nordex Control 2 NC2 SCADA devices 15 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in the login script in the Wind Farm Portal on Nordex Control 2 NC2 SCADA devices 15 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter...
CVE-2014-5408 Nordex NC2 Cross-site Scripting
Cross-site scripting XSS vulnerability in the login script in the Wind Farm Portal on Nordex Control 2 NC2 SCADA devices 15 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter...
CVE-2014-5408
CVE-2014-5408 is a reflected XSS in the Nordex NC2 Wind Farm Portal login script (username parameter) affecting NC2 v15 and earlier. The vulnerability, exploitable remotely, can cause a user’s browser to execute arbitrary script/HTML; OpenVAS notes the potential to read cookies during exploitatio...