EUVD-2021-28559

Malicious code in bioql PyPI...

awb-es.de Cross Site Scripting vulnerability OBB-3452850

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2021-41542

A vulnerability has been identified in Climatix POL909 AWB module All versions V11.44, Climatix POL909 AWM module All versions V11.36. The User Management page of affected devices is vulnerable to cross-site scripting XSS. The vulnerability allows an attacker to send malicious JavaScript code whi...

CVE-2021-41543

A vulnerability has been identified in Climatix POL909 AWB module All versions V11.44, Climatix POL909 AWM module All versions V11.36. The handling of log files in the web application of affected devices contains an information disclosure vulnerability which could allow logged in users to access...

CVE-2021-41543

The CVE-2021-41543 vulnerability affects Siemens Climatix POL909 (AWB and AWM modules). It is an information disclosure in the web application’s handling of log files, allowing logged-in users to access sensitive files. Affected products: POL909 AWB and POL909 AWM modules; versions prior to 11.34...

CVE-2021-41542

Siemens Climatix POL909 devices (AWM and AWB modules) are affected by cross-site scripting on the User Management and Group Management web pages. The vulnerability stems from improper input handling in the web interface, allowing execution of malicious JavaScript that can hijack cookies/sessions ...

Siemens Climatix POL909 (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.4 ATTENTION: Exploitable remotely Vendor: Siemens --------- Begin Update A Part 1 of 3 --------- Equipment: Climatix POL909 AWM and AWB modules --------- End Update A Part 1 of 3 --------- Vulnerability: Missing Encryption of Sensitive Data 2. RISK EVALUATION...

Threat Outbreak Alert RuleID33042: Email Messages Distributing Malicious Software on June 22, 2018

Medium Alert ID: 58277 First Published: 2018 June 22 20:20 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33042 may contain the following files: Name | Siz...

CVE-2018-6486 MFSBGN03797 rev.1 - Micro Focus Fortify Audit Workbench (AWB) and Micro Focus Fortify Software Security Center (SSC), XML External Entity Injection

XML External Entity XXE vulnerability in Micro Focus Fortify Audit Workbench AWB and Micro Focus Fortify Software Security Center SSC, versions 16.10, 16.20, 17.10. This vulnerability could be exploited to allow a XML External Entity XXE injection...

WordPress Emag Marketplace Connector Plugin Cross-Site Scripting Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform using PHP language development, the platform supports in PHP and MySQL servers to set up a personal blog site.Emag Marketplace Connector plugin is used in which a can be WooCommerec store and the The eMAG Marketplace...

CVE-2017-17043

The Emag Marketplace Connector plugin 1.0.0 for WordPress has reflected XSS because the parameter "post" to /wp-content/plugins/emag-marketplace-connector/templates/order/awb-meta-box.php is not filtered correctly...

Threat Outbreak Alert RuleID30465: Email Messages Distributing Malicious Software on September 7, 2017

Medium Alert ID: 55137 First Published: 2017 September 7 15:14 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID30465 may contain the following files: Name |...

Threat Outbreak Alert RuleID23153: Email Messages Distributing Malicious Software on May 29, 2016

Medium Alert ID: 46452 First Published: 2016 May 31 14:20 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID23153 may contain the following files: Name | Size...

AWB Esslingen - Exported ContentProvider, Unsafe deleting, WebView JavaScript enabled vulnerabilities

HackApp vulnerability scanner discovered that application AWB Esslingen published at the 'play' market has multiple vulnerabilities...

DEBIAN-CVE-2014-0027

The playwavefromsocket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information...

VLC media player <= 1.1.11 (.awb) Memory Corruption

Exploit for windows platform in category local exploits Application :VLC media player = 1.1.11 .awb Memory Corruption Date : 06/03/2012 Auther : Senator of Pirates E-Mail : email protected FaceBook : /SenatorofPirates Greet : i greet to Gjoko 'LiquidWorm' Krstic, Matias Chroren ... , 1337day.com...