15 matches found
EUVD-2023-28997
Malicious code in bioql PyPI...
CVE-2023-25017
RIFARTEK IOT Wall has a vulnerability of incorrect authorization. An authenticated remote attacker with general user privilege is allowed to perform specific privileged function to access and modify all sensitive data...
CVE-2023-25017
RIFARTEK IOT Wall has a vulnerability of incorrect authorization. An authenticated remote attacker with general user privilege is allowed to perform specific privileged function to access and modify all sensitive data...
CVE-2023-25018
RIFARTEK IOT Wall transportation function has insufficient filtering for user input. An authenticated remote attacker with general user privilege can inject JavaScript to perform reflected XSS Reflected Cross-site scripting attack...
CVE-2023-25018
RIFARTEK IOT Wall transportation function has insufficient filtering for user input. An authenticated remote attacker with general user privilege can inject JavaScript to perform reflected XSS Reflected Cross-site scripting attack...
Cross site scripting
RIFARTEK IOT Wall transportation function has insufficient filtering for user input. An authenticated remote attacker with general user privilege can inject JavaScript to perform reflected XSS Reflected Cross-site scripting attack...
Authorization
RIFARTEK IOT Wall has a vulnerability of incorrect authorization. An authenticated remote attacker with general user privilege is allowed to perform specific privileged function to access and modify all sensitive data...
RIFARTEK IOT Wall 安全漏洞
Rifartek IOT Wall is a security software from Rifartek China. A security vulnerability exists in RIFARTEK IOT Wall version v.22, which stems from the presence of an authorization error vulnerability. An attacker can exploit the vulnerability to perform specific privileged functions to access and...
RIFARTEK IOT Wall 跨站脚本漏洞
Rifartek IOT Wall is a security software from the Chinese company Rifartek. A cross-site scripting vulnerability exists in RIFARTEK IOT Wall v.22, which is caused by insufficient filtering of user input in the transport function. The vulnerability can be exploited to inject JavaScript to perform ...
CVE-2023-25018 Rifartek IOT Wall - Reflected XSS
RIFARTEK IOT Wall transportation function has insufficient filtering for user input. An authenticated remote attacker with general user privilege can inject JavaScript to perform reflected XSS Reflected Cross-site scripting attack...
CVE-2023-25018
The CVE-2023-25018 issue affects the RIFARTEK IOT Wall transportation function, where insufficient input filtering enables a reflected XSS vulnerability. An authenticated remote attacker with general user privileges can inject JavaScript via manipulated input to cause a reflected XSS. The availab...
CVE-2023-25017 Rifartek IOT Wall - Broken Access Control
RIFARTEK IOT Wall has a vulnerability of incorrect authorization. An authenticated remote attacker with general user privilege is allowed to perform specific privileged function to access and modify all sensitive data...
CVE-2023-25018 Rifartek IOT Wall - Reflected XSS
RIFARTEK IOT Wall transportation function has insufficient filtering for user input. An authenticated remote attacker with general user privilege can inject JavaScript to perform reflected XSS Reflected Cross-site scripting attack...
CVE-2023-25017 Rifartek IOT Wall - Broken Access Control
RIFARTEK IOT Wall has a vulnerability of incorrect authorization. An authenticated remote attacker with general user privilege is allowed to perform specific privileged function to access and modify all sensitive data...
CVE-2023-25017
CVE-2023-25017 affects RIFARTEK IOT Wall (reported variants reference v.22 in CNNVD). The vulnerability is described as incorrect authorization allowing an authenticated remote user with general privileges to perform specific privileged functions and access/modify all sensitive data. The connecte...