Lucene search
K

150 matches found

BDU FSTEC
BDU FSTEC
added 2024/05/17 12:0 a.m.7 views

The vulnerability of the HTTP(S) control module of the Hirschmann HiEOS operating system, which is used by Belden Hirschmann network switches, allows attackers to bypass the authentication process.

The vulnerability of the HTTPS control module of the Hirschmann HiEOS operating system, which is used by Belden Hirschmann network switches, relates to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass the authentication process through...

10CVSS5.5AI score
Exploits0References2
Exploit DB
Exploit DB
added 2024/03/03 12:0 a.m.293 views

TitanNit Web Control 2.01 / Atemio 7600 - Root Remote Code Execution

!/usr/bin/env python -- coding: utf-8 -- TitanNit Web Control 2.01 / Atemio 7600 Root Remote Code Execution Vendor: AAF Digital HD Forum | Atelmo GmbH Product web page: http://www.aaf-digital.info | https://www.atemio.de Affected version: Firmware =2.01 Summary: The Atemio AM 520 HD Full HD...

7.4AI score
Exploits0
CNNVD
CNNVD
added 2024/01/10 12:0 a.m.7 views

Trellix Endpoint Security Cross-Site Scripting Vulnerability

Trellix Endpoint Security ENS is an endpoint security solution from FireEye Trellix USA. A cross-site scripting vulnerability exists in Trellix Endpoint Security ENS Web Control prior to version 10.7.0 Update 15, which originates from a cross-site scripting vulnerability that allows a remote...

6.1CVSS6.2AI score0.00422EPSS
Exploits0References2
OSV
OSV
added 2023/10/13 11:35 p.m.27 views

CVE-2023-45674 SQL injection vulnerability in Farmbot-Web-App

Farmbot-Web-App is a web control interface for the Farmbot farm automation platform. An SQL injection vulnerability was found in FarmBot's web app that allows authenticated attackers to extract arbitrary data from its database including the user table. This issue may lead to Information Disclosur...

7.7CVSS6.8AI score0.005EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/08/16 12:0 a.m.7 views

PT-2023-29042 · Unknown · Control Id Gerencia Web

Name of the Vulnerable Software and Affected Versions: Control iD Gerencia Web version 1.30 Description: A vulnerability was found in the component Cookie Handler, leading to cleartext storage of sensitive information. The attack may be launched remotely, with a rather high complexity and difficu...

5.3CVSS6.8AI score0.00513EPSS
Exploits1References8
NVD
NVD
added 2023/06/22 11:15 a.m.20 views

CVE-2023-29707

Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...

4.8CVSS5AI score0.00448EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/06/22 11:15 a.m.3 views

CVE-2023-29707

Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...

4.8CVSS6AI score0.00448EPSS
Exploits1References3
Prion
Prion
added 2023/06/22 11:15 a.m.14 views

Cross site scripting

Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...

4.3CVSS4.9AI score0.00448EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/06/22 12:0 a.m.5 views

PT-2023-22363 · Gbcom · Gbcom Lac Web Control Center

Name of the Vulnerable Software and Affected Versions: GBCOM LAC WEB Control Center version lac-1.3.x Description: The issue allows attackers to create an arbitrary device through a Cross Site Scripting XSS vulnerability. Recommendations: For GBCOM LAC WEB Control Center version lac-1.3.x, consid...

4.8CVSS5AI score0.00448EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/06/22 12:0 a.m.3 views

GBCOM LAC WEB Control Center 跨站脚本漏洞

GBCOM LAC WEB Control Center is a WEB Control Center from China Huanchuang GBCOM. A security vulnerability exists in the GBCOM LAC WEB Control Center lac-1.3.x version that could allow an attacker to create arbitrary devices...

4.8CVSS5.5AI score0.00448EPSS
Exploits1References3
CVE
CVE
added 2023/06/22 12:0 a.m.47 views

CVE-2023-29707

CVE-2023-29707 concerns a cross-site scripting (XSS) vulnerability in the GBCOM LAC WEB Control Center, version lac-1.3.x. The available sources in the connected documents indicate that an attacker could leverage this flaw to create an arbitrary device. The CVE entry notes a CVSS v3.1 base score ...

4.8CVSS5AI score0.00448EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/06/22 12:0 a.m.17 views

CVE-2023-29707

Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...

5.2AI score0.00448EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2022/10/17 12:0 a.m.200 views

MiniDVBLinux 5.4 SVDRP Control

MiniDVBLinux 5.4 Simple VideoDiskRecorder Protocol SVDRP svdrpsend.sh Exploit Vendor: MiniDVBLinux Product web page: https://www.minidvblinux.de Affected version: =5.4 Summary: MiniDVBLinuxTM Distribution MLD. MLD offers a simple way to convert a standard PC into a Multi Media Centre based on the...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2021/10/30 8:30 p.m.57 views

Dockerized-Android - A Container-Based Framework To Enable The Integration Of Mobile Components In Security Training Platforms

Dockerized Android is a container-based framework that allows to execute and Android Emulator inside Docker and control it through a browser. This project has been developed in order to provide a starting point for integrating mobile security components into Cyber Ranges but it can be used for an...

7.1AI score
Exploits0References12
CNNVD
CNNVD
added 2021/09/15 12:0 a.m.6 views

hestiacp 安全漏洞

hestiacp is a lightweight and powerful control panel for the modern web. A security vulnerability exists in hestiacp that stems from hestiacp's tendency to use incorrect operators in string comparisons...

9.8CVSS6AI score0.01148EPSS
Exploits1References3
Exploit DB
Exploit DB
added 2021/09/13 12:0 a.m.254 views

ECOA Building Automation System - Local File Disclosure

Exploit Title: ECOA Building Automation System - Local File Disclosure Date: 25.06.2021 Exploit Author: Neurogenesia Vendor Homepage: http://www.ecoa.com.tw ECOA Building Automation System Local File Disclosure Vulnerability Vendor: ECOA Technologies Corp. Product web page: http://www.ecoa.com.tw...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/10 12:0 a.m.165 views

ECOA Building Automation System Arbitrary File Deletion

ECOA Building Automation System Arbitrary File Deletion Vendor: ECOA Technologies Corp. Product web page: http://www.ecoa.com.tw Affected version: ECOA ECS Router Controller - ECS FLASH ECOA RiskBuster Terminator - E6L45 ECOA RiskBuster System - RB 3.0.0 ECOA RiskBuster System - TRANE 1.0 ECOA...

0.4AI score
Exploits0
CNNVD
CNNVD
added 2021/09/01 12:0 a.m.6 views

Christie Digital DWU850-GS 授权问题漏洞

The Christie Digital DWU850-GS is a laser projector from Christie. A security vulnerability in webctrl.cgi.elf in the firmware of the Christie Digital DWU850-GS version V06.46 can be exploited by an attacker to perform any desired action via a specially crafted query containing an unspecified...

9.8CVSS8.3AI score0.01555EPSS
Exploits1References1
Exploit DB
Exploit DB
added 2021/08/16 12:0 a.m.221 views

COMMAX CVD-Axx DVR 5.1.4 - Weak Default Credentials Stream Disclosure

Exploit Title: COMMAX CVD-Axx DVR 5.1.4 - Weak Default Credentials Stream Disclosure Date: 02.08.2021 Exploit Author: LiquidWorm Vendor Homepage: https://www.commax.com COMMAX CVD-Axx DVR 5.1.4 Weak Default Credentials Stream Disclosure Vendor: COMMAX Co., Ltd. Prodcut web page:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/08/16 12:0 a.m.243 views

COMMAX CVD-Axx DVR 5.1.4 Weak Default Credentials Stream Disclosure

COMMAX CVD-Axx DVR 5.1.4 Weak Default Credentials Stream Disclosure Vendor: COMMAX Co., Ltd. Prodcut web page: https://www.commax.com Affected version: CVD-AH04 DVR 4.4.1 CVD-AF04 DVR 4.4.1 CVD-AH16 DVR 5.1.4 CVD-AF16 DVR 4.4.1 CVD-AF08 DVR 5.1.2 CVD-AH08 DVR 5.1.2 Summary: COMMAX offers a wide...

0.1AI score
Exploits0
Rows per page
Query Builder