Lucene search
+L

2245 matches found

CNVD
CNVD
added 2018/03/12 12:0 a.m.3 views

Code Execution Vulnerability in Netnifty CMS v7.3

Netnew CIMS is an intelligent program developed professionally for building personal and corporate websites. A code execution vulnerability exists in Netnifty CMS v7.3, which can be exploited to obtain a webshell due to insufficient filtering of the parameters of the database file to be backed up...

7.5AI score
Exploits0
CNVD
CNVD
added 2018/03/02 12:0 a.m.9 views

ABB MicroSCADA Installation Elevation of Privilege Vulnerability

ABB MicroSCADA is a suite of substation monitoring and control software from ABB Switzerland, developed specifically for power transmission and distribution systems. The software includes a human-machine interface MMI and flexible application engineering tools, and provides monitoring, event...

7.8CVSS6.8AI score0.00318EPSS
Exploits0References1
OSV
OSV
added 2018/02/15 10:29 p.m.5 views

CVE-2017-8984

A remote code execution vulnerability in HPE Intelligent Management Center iMC PLAT version 7.3 E0506P03 was found...

8.8CVSS6.3AI score0.11268EPSS
Exploits0References2
OSV
OSV
added 2018/02/15 10:29 p.m.5 views

CVE-2017-8961

A directory traversal vulnerability in HPE Intelligent Management Center IMC PLAT 7.3 E0504P02 could allow remote code execution...

8.8CVSS6AI score0.19398EPSS
Exploits0References2
OSV
OSV
added 2018/02/15 10:29 p.m.3 views

CVE-2017-8956

A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version 7.3 E0504P04 was found...

9.8CVSS5.9AI score0.10427EPSS
Exploits0References1
OSV
OSV
added 2018/02/15 10:29 p.m.2 views

CVE-2017-5816

A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version 7.3 E0504P04 was found...

9.8CVSS5.9AI score0.86466EPSS
Exploits13References5
OSV
OSV
added 2018/02/15 10:29 p.m.6 views

CVE-2017-12554

A remote code execution vulnerability in HPE intelligent Management Center iMC PLAT iMC Plat 7.3 E0504P2 and earlier was found...

8.8CVSS6.3AI score0.04739EPSS
Exploits0References2
OSV
OSV
added 2018/02/15 10:29 p.m.3 views

CVE-2017-12534

A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version PLAT 7.3 E0504 was found. The problem was resolved in HPE Intelligent Management Center PLAT v7.3 E0506 or any subsequent version...

8.8CVSS5.9AI score0.0572EPSS
Exploits1References3
OSV
OSV
added 2018/02/15 10:29 p.m.6 views

CVE-2017-12525

A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version PLAT 7.3 E0504 was found. The problem was resolved in HPE Intelligent Management Center PLAT v7.3 E0506 or any subsequent version...

8.8CVSS5.9AI score0.0572EPSS
Exploits0References3
OSV
OSV
added 2018/02/15 10:29 p.m.1 views

CVE-2017-12511

A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version PLAT 7.3 E0504 was found. The problem was resolved in HPE Intelligent Management Center PLAT v7.3 E0506 or any subsequent version...

8.8CVSS5.9AI score0.0572EPSS
Exploits0References3
CNVD
CNVD
added 2018/02/07 12:0 a.m.3 views

OMRON NS Device Authentication Bypass Vulnerability

OMRON NS devices is a touch screen HMI programming device from Omron. A security vulnerability exists in OMRON NS devices versions 1.1 through 1.3. A remote attacker can exploit this vulnerability by sending a direct request to an .html file to bypass authentication...

9.8CVSS7AI score0.01649EPSS
Exploits0References1
CNVD
CNVD
added 2018/02/07 12:0 a.m.4 views

Atlassian Confluence Server Cross-Site Scripting Vulnerability (CNVD-2018-03442)

Atlassian Confluence Server is a suite of professional enterprise knowledge management and collaboration software from Atlassian Australia, which can also be used to build an enterprise WiKi. the software enables collaboration and knowledge sharing amongst team members. A cross-site scripting...

4.8CVSS6.2AI score0.00601EPSS
Exploits0References1
CNVD
CNVD
added 2018/01/24 12:0 a.m.4 views

phpyun v4.3.1 Beta has a reinstallation vulnerability

PHP cloud talent system phpyun is an open source talent and enterprise job search recruitment, hiring solutions built using PHP and MySQL database. A reinstallation vulnerability exists in phpyun v4.3.1 Beta. Allows attackers to exploit the vulnerability to reinstall the system...

6.9AI score
Exploits0
CNVD
CNVD
added 2018/01/22 12:0 a.m.6 views

NetIQ Access Manager Arbitrary Code Execution Vulnerability

NetIQ Access Manager NAM is a set of resource access control solutions from American NetIQ. The solution provides multiple authentication, data encryption, single sign-on and SSL VPN for local and remote users.Identity Server is one of the authentication servers. A security vulnerability exists i...

10CVSS7.7AI score0.34593EPSS
Exploits0References1
CNVD
CNVD
added 2018/01/17 12:0 a.m.4 views

Advantech WebAccess Arbitrary File Upload Vulnerability

Advantech WebAccess is a set of HMI/SCADA software from Advantech based on browser architecture. The software supports dynamic graphic display and real-time data control, and provides remote control and management of automation equipment. An arbitrary file upload vulnerability exists in versions ...

7.5CVSS7AI score0.01815EPSS
Exploits0References1
OSV
OSV
added 2018/01/12 2:29 a.m.4 views

CVE-2017-16736

An Unrestricted Upload Of File With Dangerous Type issue was discovered in Advantech WebAccess versions prior to 8.3. WebAccess allows a remote attacker to upload arbitrary files...

7.5CVSS5.9AI score0.01815EPSS
Exploits0References1
CNVD
CNVD
added 2018/01/08 12:0 a.m.4 views

Advantech WebAccess Path Traversal Vulnerability

Advantech WebAccess formerly known as BroadWin WebAccess is a set of HMI/SCADA software based on browser architecture from Advantech. The software supports dynamic graphical displays and real-time data control, and provides the ability to remotely control and manage automation equipment. A path...

10CVSS6.8AI score0.50321EPSS
Exploits5References1
CNVD
CNVD
added 2018/01/08 12:0 a.m.58 views

Advantech WebAccess Denial of Service Vulnerability (CNVD-2018-00673)

Advantech WebAccess is a set of HMI/SCADA software from Advantech based on browser architecture. The software supports dynamic graphic display and real-time data control, and provides remote control and management of automation equipment. A denial of service vulnerability exists in Advantech...

7.5CVSS6.7AI score0.02079EPSS
Exploits0References1
CNVD
CNVD
added 2018/01/08 12:0 a.m.5 views

Advantech WebAccess stack buffer overflow vulnerability (CNVD-2018-00671)

Advantech WebAccess is a set of HMI/SCADA software from Advantech based on browser architecture. The software supports dynamic graphic display and real-time data control, and provides remote control and management of automation equipment. A stack buffer overflow vulnerability exists in versions...

9.8CVSS7.8AI score0.0259EPSS
Exploits0References1
OSV
OSV
added 2017/12/09 6:29 a.m.3 views

CVE-2017-11296

An issue was discovered in Adobe Experience Manager 6.3, 6.2, 6.1, 6.0. A cross-site scripting vulnerability in Apache Sling Servlets Post 2.3.20 has been resolved in Adobe Experience Manager...

6.1CVSS5.6AI score0.0293EPSS
Exploits0References3
Rows per page
Query Builder