14 matches found
EUVD-2021-8064
Malicious code in bioql PyPI...
EUVD-2021-8063
Malicious code in bioql PyPI...
CVE-2021-20645
Cross-site scripting vulnerability in ELECOM WRC-300FEBK-A allows remote authenticated attackers to inject arbitrary script via unspecified vectors...
CVE-2021-20646
Cross-site request forgery CSRF vulnerability in ELECOM WRC-300FEBK-A allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. As a result, the device settings may be altered and/or telnet daemon may be started...
CVE-2021-20645
Cross-site scripting vulnerability in ELECOM WRC-300FEBK-A allows remote authenticated attackers to inject arbitrary script via unspecified vectors...
Cross site scripting
Cross-site scripting vulnerability in ELECOM WRC-300FEBK-A allows remote authenticated attackers to inject arbitrary script via unspecified vectors...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in ELECOM WRC-300FEBK-A allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. As a result, the device settings may be altered and/or telnet daemon may be started...
CVE-2021-20646
Cross-site request forgery CSRF vulnerability in ELECOM WRC-300FEBK-A allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. As a result, the device settings may be altered and/or telnet daemon may be started...
CVE-2021-20645
Cross-site scripting vulnerability in ELECOM WRC-300FEBK-A allows remote authenticated attackers to inject arbitrary script via unspecified vectors...
CVE-2021-20646
CVE-2021-20646 affects ELECOM WRC-300FEBK-A and is a Cross-site Request Forgery (CSRF) vulnerability that can hijack an administrator’s session and cause arbitrary requests to be executed, potentially altering device settings or starting a telnet daemon. The connected documents confirm the vulner...
CVE-2021-20645
CVE-2021-20645 refers to a stored cross-site scripting vulnerability in ELECOM WRC-300FEBK-A. Public sources describe that an arbitrary script could be executed in the browser of a logged-in user due to a vulnerability in the web setup page, with impact listed as execution of scripts on the user’...
ELECOM WRC-300FEBK-A Cross-Site Scripting Vulnerability (CNVD-2021-14147)
The ELECOM WRC-300FEBK-A is a wireless access device. A cross-site scripting vulnerability exists in the ELECOM WRC-300FEBK-A, which can be exploited by attackers to inject malicious script or HTML code...
Elecom ELECOM WRC-300FEBK-A 跨站请求伪造漏洞
The ELECOM WRC-300FEBK-A is a wireless access device. The ELECOM WRC-300FEBK-A suffers from a cross-site request forgery vulnerability that can be exploited by an attacker to construct a malicious URI, bait a request, and perform a malicious operation in the context of the target user...
Elecom ELECOM WRC-300FEBK-A 跨站脚本漏洞
The ELECOM WRC-300FEBK-A is a wireless access device. A cross-site scripting vulnerability exists in the ELECOM WRC-300FEBK-A, which can be exploited by attackers to inject malicious script or HTML code...