Socomec MODULYS GP Cross-Site Request Forgery Vulnerability

Socomec MODULYS GP is a green power device from Socomec, France. The Socomec MODULYS GP suffers from a cross-site request forgery vulnerability that stems from a weakness in a web application at the user administration level, which could allow an attacker to obtain the information required to...

Malicious code in circle-admin-web-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7f76a2bc0c0f563c74e8f1cf6ead555272deba5738524e1f4ee893708391de3e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-1904 Malicious code in circle-admin-web-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7f76a2bc0c0f563c74e8f1cf6ead555272deba5738524e1f4ee893708391de3e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2017-5264

Versions of Nexpose prior to 6.4.66 fail to adequately validate the source of HTTP requests intended for the Automated Actions administrative web application, and are susceptible to a cross-site request forgery CSRF attack...