19 matches found
EUVD-2025-14835
Malicious code in bioql PyPI...
CVE-2025-27632
A Host Header Injection vulnerability in TRMTracker application may allow an attacker by modifying the host header value in an HTTP request to leverage multiple attack vectors, including defacing the site content through web-cache poisoning...
CVE-2025-27631
The TRMTracker web application is vulnerable to LDAP injection attack potentially allowing an attacker to inject code into a query and execute remote commands that can read and update data on the website...
Hitachi Energy TRMTracker
SUMMARY Hitachi Energy is aware of the multiple vulnerabilities that affect the TRMTracker product versions listed in this document. An attacker successfully exploiting these vulnerabilities can cause confidentiality and integrity impacts. Please refer to the Recommended Immediate Actions for...
CVE-2025-27633
The TRMTracker web application is vulnerable to reflected Cross-site scripting attack. The application allows client-side code injection that might be used to compromise the confidentiality and integrity of the system...
CVE-2025-27632
A Host Header Injection vulnerability in TRMTracker application may allow an attacker by modifying the host header value in an HTTP request to leverage multiple attack vectors, including defacing the site content through web-cache poisoning...
CVE-2025-27631
The TRMTracker web application is vulnerable to LDAP injection attack potentially allowing an attacker to inject code into a query and execute remote commands that can read and update data on the website...
CVE-2025-27631
The TRMTracker web application is vulnerable to LDAP injection attack potentially allowing an attacker to inject code into a query and execute remote commands that can read and update data on the website...
CVE-2025-27631
CVE-2025-27631 affects Hitachi Energy’s TRMTracker web application. Connected sources confirm an LDAP injection vulnerability in the TRMTracker component, enabling an attacker to inject code into queries and execute remote commands that can read and update data on the site. The issue is described...
CVE-2025-27631
The TRMTracker web application is vulnerable to LDAP injection attack potentially allowing an attacker to inject code into a query and execute remote commands that can read and update data on the website...
CVE-2025-27633
The TRMTracker web application is vulnerable to reflected Cross-site scripting attack. The application allows client-side code injection that might be used to compromise the confidentiality and integrity of the system...
CVE-2025-27633
Summary: CVE-2025-27633 affects the Hitachi Energy TRMTracker web application, with a reflected cross-site scripting (XSS) vulnerability due to client-side code injection. The issue could compromise confidentiality and integrity and is described across multiple sources as a reflected XSS risk. CV...
CVE-2025-27633
The TRMTracker web application is vulnerable to reflected Cross-site scripting attack. The application allows client-side code injection that might be used to compromise the confidentiality and integrity of the system...
CVE-2025-27632
A Host Header Injection vulnerability in TRMTracker application may allow an attacker by modifying the host header value in an HTTP request to leverage multiple attack vectors, including defacing the site content through web-cache poisoning...
CVE-2025-27632
A Host Header Injection vulnerability in TRMTracker application may allow an attacker by modifying the host header value in an HTTP request to leverage multiple attack vectors, including defacing the site content through web-cache poisoning...
CVE-2025-27632
Hitachi Energy TRMTracker web application is affected by a Host Header Injection vulnerability. An attacker can manipulate the Host header in HTTP requests to trigger multiple attack vectors, including web-cache poisoning defacement. Related sources also describe an LDAP injection path and a refl...
Hitachi Energy TRMTracker 注入漏洞
Hitachi Energy TRMTracker is a front-end to back-end Commodity/Energy Trading and Risk Management C/ETRM software platform from Hitachi, Japan. Hitachi Energy TRMTracker suffers from an injection vulnerability that stems from an LDAP injection attack that could lead to the execution of remote...
Hitachi Energy TRMTracker 注入漏洞
Hitachi Energy TRMTracker is a front-end to back-end Commodity/Energy Trading and Risk Management C/ETRM software platform from Hitachi, Japan. Hitachi Energy TRMTracker suffers from an injection vulnerability that stems from Host Header injection and could lead to multiple attack vectors...
Hitachi Energy TRMTracker 跨站脚本漏洞
Hitachi Energy TRMTracker is a front-end to back-end Commodity/Energy Trading and Risk Management C/ETRM software platform from Hitachi, Japan. A cross-site scripting vulnerability exists in Hitachi Energy TRMTracker that originates from a reflective cross-site scripting attack that could...