11 matches found
EUVD-2016-3371
Malware in sbrugna...
EUVD-2015-0993
Malware in sbrugna...
EUVD-2015-3981
Malware in sbrugna...
CVE-2016-2287
The CVE-2016-2287 vulnerability affects XZERES 442SR Wind Turbine OS: a Cross-Site Scripting (CWE-79) flaw in the web-based interface due to inadequate input validation, enabling remote injection of script/HTML via unspecified vectors. ICS-CERT Update C confirms XZERES has produced a patch to mit...
CVE-2016-2287
Cross-site scripting XSS vulnerability in XZERES 442SR OS on 442SR wind turbines allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
XZERES 442SR OS Cross-Site Request Forgery Vulnerability (CNVD-2015-03663)
The XZERES 442SR OS is a 442SR model turbine generator. The XZERES 442SR OS suffers from a cross-site request forgery vulnerability that allows a remote attacker to construct a malicious URI, trick a user into resolving it, and can perform malicious actions in the context of the target user...
CVE-2015-3950
Cross-site request forgery CSRF vulnerability in XZERES 442SR OS on 442SR wind turbines allows remote attackers to hijack the authentication of admins for requests that select a different default admin user via a GET request...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in XZERES 442SR OS on 442SR wind turbines allows remote attackers to hijack the authentication of admins for requests that select a different default admin user via a GET request...
CVE-2015-3950
Cross-site request forgery CSRF vulnerability in XZERES 442SR OS on 442SR wind turbines allows remote attackers to hijack the authentication of admins for requests that select a different default admin user via a GET request...
CVE-2015-0985
Cross-site request forgery CSRF vulnerability in XZERES 442SR OS on 442SR wind turbines allows remote attackers to hijack the authentication of admins for requests that modify the default user's password via a GET request...
CVE-2015-0985
Cross-site request forgery CSRF vulnerability in XZERES 442SR OS on 442SR wind turbines allows remote attackers to hijack the authentication of admins for requests that modify the default user's password via a GET request...