Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-8064

Malicious code in bioql PyPI...

6.5CVSS7AI score0.00497EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-8063

Malicious code in bioql PyPI...

5.4CVSS6AI score0.00737EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 7:7 p.m.8 views

CVE-2021-20645

Cross-site scripting vulnerability in ELECOM WRC-300FEBK-A allows remote authenticated attackers to inject arbitrary script via unspecified vectors...

5.4CVSS6.2AI score0.00737EPSS
Exploits0References1
NVD
NVD
added 2021/02/12 7:15 a.m.18 views

CVE-2021-20646

Cross-site request forgery CSRF vulnerability in ELECOM WRC-300FEBK-A allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. As a result, the device settings may be altered and/or telnet daemon may be started...

6.5CVSS0.00497EPSS
Exploits0References2
NVD
NVD
added 2021/02/12 7:15 a.m.19 views

CVE-2021-20645

Cross-site scripting vulnerability in ELECOM WRC-300FEBK-A allows remote authenticated attackers to inject arbitrary script via unspecified vectors...

5.4CVSS0.00737EPSS
Exploits0References2
Prion
Prion
added 2021/02/12 7:15 a.m.19 views

Cross site scripting

Cross-site scripting vulnerability in ELECOM WRC-300FEBK-A allows remote authenticated attackers to inject arbitrary script via unspecified vectors...

4.3CVSS5.5AI score0.00737EPSS
Exploits0References2
Prion
Prion
added 2021/02/12 7:15 a.m.22 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in ELECOM WRC-300FEBK-A allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. As a result, the device settings may be altered and/or telnet daemon may be started...

4.3CVSS7.1AI score0.00497EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/02/12 6:15 a.m.18 views

CVE-2021-20646

Cross-site request forgery CSRF vulnerability in ELECOM WRC-300FEBK-A allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. As a result, the device settings may be altered and/or telnet daemon may be started...

7.3AI score0.00497EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/02/12 6:15 a.m.23 views

CVE-2021-20645

Cross-site scripting vulnerability in ELECOM WRC-300FEBK-A allows remote authenticated attackers to inject arbitrary script via unspecified vectors...

5.9AI score0.00737EPSS
Exploits0References2
CVE
CVE
added 2021/02/12 6:15 a.m.77 views

CVE-2021-20646

CVE-2021-20646 affects ELECOM WRC-300FEBK-A and is a Cross-site Request Forgery (CSRF) vulnerability that can hijack an administrator’s session and cause arbitrary requests to be executed, potentially altering device settings or starting a telnet daemon. The connected documents confirm the vulner...

6.5CVSS7AI score0.00497EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/02/12 6:15 a.m.76 views

CVE-2021-20645

CVE-2021-20645 refers to a stored cross-site scripting vulnerability in ELECOM WRC-300FEBK-A. Public sources describe that an arbitrary script could be executed in the browser of a logged-in user due to a vulnerability in the web setup page, with impact listed as execution of scripts on the user’...

5.4CVSS5.5AI score0.00737EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2021/02/01 12:0 a.m.8 views

ELECOM WRC-300FEBK-A Cross-Site Scripting Vulnerability (CNVD-2021-14147)

The ELECOM WRC-300FEBK-A is a wireless access device. A cross-site scripting vulnerability exists in the ELECOM WRC-300FEBK-A, which can be exploited by attackers to inject malicious script or HTML code...

5.4CVSS5.9AI score0.00737EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/01/26 12:0 a.m.10 views

Elecom ELECOM WRC-300FEBK-A 跨站请求伪造漏洞

The ELECOM WRC-300FEBK-A is a wireless access device. The ELECOM WRC-300FEBK-A suffers from a cross-site request forgery vulnerability that can be exploited by an attacker to construct a malicious URI, bait a request, and perform a malicious operation in the context of the target user...

6.5CVSS5.7AI score0.00497EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/01/26 12:0 a.m.6 views

Elecom ELECOM WRC-300FEBK-A 跨站脚本漏洞

The ELECOM WRC-300FEBK-A is a wireless access device. A cross-site scripting vulnerability exists in the ELECOM WRC-300FEBK-A, which can be exploited by attackers to inject malicious script or HTML code...

5.4CVSS5.6AI score0.00737EPSS
Exploits0References4
Rows per page
Query Builder