Lucene search
K

8 matches found

CNVD
CNVD
added 2015/10/21 12:0 a.m.2 views

Multiple Cross-Site Scripting Vulnerabilities in Nordex NC2

Nordex Control 2 is a web-based SCADA system for wind power stations. Multiple cross-site scripting vulnerabilities exist in the Nordex Control 2 NC2 SCADA 16 and earlier versions, Wind Farm Portal application. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTM...

4.3CVSS6.2AI score0.12042EPSS
Exploits1References1
Prion
Prion
added 2015/10/18 7:59 p.m.12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Wind Farm Portal application in Nordex Control 2 NC2 SCADA 16 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.12042EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2015/10/18 7:0 p.m.6 views

CVE-2015-6477

Multiple cross-site scripting XSS vulnerabilities in the Wind Farm Portal application in Nordex Control 2 NC2 SCADA 16 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.8AI score0.12042EPSS
Exploits1References3
Cvelist
Cvelist
added 2015/10/18 7:0 p.m.23 views

CVE-2015-6477

Multiple cross-site scripting XSS vulnerabilities in the Wind Farm Portal application in Nordex Control 2 NC2 SCADA 16 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.12042EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2015/10/18 12:0 a.m.7 views

PT-2015-7264

Name of the Vulnerable Software and Affected Versions Nordex Control 2 NC2 SCADA versions 16 and earlier Description The issue concerns multiple cross-site scripting XSS vulnerabilities in the Wind Farm Portal application. These vulnerabilities allow remote attackers to inject arbitrary web scrip...

6.1CVSS5.4AI score0.12042EPSS
Exploits1References5
Prion
Prion
added 2014/11/05 11:55 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in the login script in the Wind Farm Portal on Nordex Control 2 NC2 SCADA devices 15 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter...

4.3CVSS6.2AI score0.01671EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2014/11/05 11:0 a.m.17 views

CVE-2014-5408 Nordex NC2 Cross-site Scripting

Cross-site scripting XSS vulnerability in the login script in the Wind Farm Portal on Nordex Control 2 NC2 SCADA devices 15 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter...

7.5CVSS5.8AI score0.01671EPSS
Exploits0References3
CVE
CVE
added 2014/11/05 11:0 a.m.81 views

CVE-2014-5408

CVE-2014-5408 is a reflected XSS in the Nordex NC2 Wind Farm Portal login script (username parameter) affecting NC2 v15 and earlier. The vulnerability, exploitable remotely, can cause a user’s browser to execute arbitrary script/HTML; OpenVAS notes the potential to read cookies during exploitatio...

7.5CVSS6AI score0.01671EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder