21 matches found
EUVD-2023-45106
Malicious code in bioql PyPI...
EUVD-2023-43636
Malicious code in bioql PyPI...
EUVD-2023-42373
Malicious code in bioql PyPI...
CVE-2023-38574
Open redirect vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL...
CVE-2023-40705
Stored cross-site scripting vulnerability in Map setting page of VI Web Client prior to 7.9.6 allows a remote authenticated attacker to inject an arbitrary script...
CVE-2023-40535
Stored cross-site scripting vulnerability in View setting page of VI Web Client prior to 7.9.6 allows a remote authenticated attacker to inject an arbitrary script...
CVE-2023-40535
Stored cross-site scripting vulnerability in View setting page of VI Web Client prior to 7.9.6 allows a remote authenticated attacker to inject an arbitrary script...
CVE-2023-39938
Reflected cross-site scripting vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to inject an arbitrary script...
CVE-2023-38574
Open redirect vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL...
CVE-2023-38574
Open redirect vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL...
Cross site scripting
Reflected cross-site scripting vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to inject an arbitrary script...
CVE-2023-40705
The CVE-2023-40705 entry concerns the VI Web Client (i-PRO VI Web Client) prior to version 7.9.6. The vulnerability is a Stored Cross-Site Scripting (XSS) issue in the Map setting page that allows a remote authenticated attacker to inject arbitrary scripts when accessing a specially crafted page....
CVE-2023-40535
Stored cross-site scripting vulnerability in View setting page of VI Web Client prior to 7.9.6 allows a remote authenticated attacker to inject an arbitrary script...
CVE-2023-40535
CVE-2023-40535 is a stored cross-site scripting vulnerability in the VI Web Client’s View setting page, exploitable by a remote authenticated attacker to inject scripts. Affected product: VI Web Client prior to version 7.9.6. Root cause/impact: arbitrary script execution in a logged-in user’s bro...
CVE-2023-39938
Reflected cross-site scripting vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to inject an arbitrary script...
CVE-2023-39938
CVE-2023-39938 is a reflected cross-site scripting vulnerability in VI Web Client (i-PRO) prior to version 7.9.6 . The flaw allows a remote unauthenticated attacker to inject arbitrary JavaScript executed in a logged-in user’s browser, as described in multiple sources (e.g., NVD, JVN entries). Th...
CVE-2023-38574
CVE-2023-38574 affects the VI Web Client (i-PRO VI Web Client) prior to 7.9.6, where an open redirect (CWE-601) can be triggered by a specially crafted URL. The vulnerability could allow a remote unauthenticated attacker to redirect users to arbitrary websites, enabling phishing risk. Affected ve...
CVE-2023-38574
Open redirect vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL...
PT-2023-27603 · Unknown · Vi Web Client
Name of the Vulnerable Software and Affected Versions: VI Web Client versions prior to 7.9.6 Description: A stored cross-site scripting issue in the Map setting page allows a remote authenticated attacker to inject an arbitrary script. Recommendations: For versions prior to 7.9.6, update to versi...
Multiple vulnerabilities in i-PRO VI Web Client
Overview VI Web Client provided by i-PRO Co., Ltd. is Video Insight's video management software. VI Web Client contains multiple vulnerabilities listed below. Open Redirect CWE-601 - CVE-2023-38574 Reflected Cross-site Scripting CWE-79 - CVE-2023-39938 View Stored Cross-site Scripting in View...