17 matches found
EUVD-2020-28700
Malware in sbrugna...
Real Time Automation 460MCBS 5.2.14 Cross Site Scripting
Exploit Title: Real Time Automation 460MCBS Cross Site Scripting XSS Date: 2023-03-09 Exploit Author: Yehia Elghaly Vendor Homepage: https://www.rtautomation.com/ Software Link: https://www.rtautomation.com/product/460mcbs/ Version: Revision 5.2.14 Tested on: Real Time Automation CVE: N/A Summary...
CVE-2020-7574
A vulnerability has been identified in Climatix POL908 BACnet/IP module All versions, Climatix POL909 AWM module All versions V11.32. A persistent cross-site scripting XSS vulnerability exists in the "Server Config" web interface of the affected devices that could allow an attacker to inject...
CVE-2020-7574
Siemens Climatix POL908 (BACnet/IP module) and POL909 (AWM module) are affected by CVE-2020-7574, a cross-site scripting (XSS) vulnerability in the Server Config web interface. The issue, present in all versions for POL908 and all versions
Siemens Climatix BACnet/IP Communication Module < 10.34 XSS
Binary data 720066.prm...
CVE-2018-10238
bvlc.c in skarg BACnet Protocol Stack bacserv 0.9.1 and 0.8.5 is affected by a Buffer Overflow because of a lack of packet-size validation. The affected component is bacserv BACnet/IP BVLC forwarded NPDU. The function bvlcbdtforwardnpdu calls bvlcencodeforwardednpdu which copies the content from...
NetMan 204 - Backdoor Account Vulnerability
Exploit for hardware platform in category remote exploits NetMan 204 - Backdoor Account Author: Saeed reza Zamanian penetrationtest @ Linkedin Product: NetMan 204 Vendor: http://www.riello-ups.com Product URL: http://www.riello-ups.com/products/4-software-connectivity/85-netman-204 Quick Referenc...
NetMan 204 - Backdoor Account
NetMan 204 - Backdoor Account NetMan 204 - Backdoor Account Author: Saeed reza Zamanian penetrationtest @ Linkedin Product: NetMan 204 Vendor: http://www.riello-ups.com Product URL: http://www.riello-ups.com/products/4-software-connectivity/85-netman-204 Quick Reference Installation Manual :...
Siemens Climatix BACnet/IP Communication Module Multiple Vulnerabilities (SSA-142512)
Siemens Climatix BACnet/IP Communication Module is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Climatix BACnet/IP Communication Module Cross Site Scripting
I. VULNERABILITIES ------------------------- 1. Reflected XSS Attack vulnerability in Climatix BACnet/IP communication module from Siemens 2. Unrestricted upload of files II. BACKGROUND ------------------------- BACnet/IP communication modules help to integrate controller types POL6XX of the...
CVE-2015-4174
Cross-site scripting XSS vulnerability in the integrated web server on the Siemens Climatix BACnet/IP communication module with firmware before 10.34 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...
Cross site scripting
Cross-site scripting XSS vulnerability in the integrated web server on the Siemens Climatix BACnet/IP communication module with firmware before 10.34 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...
CVE-2015-4174
Cross-site scripting XSS vulnerability in the integrated web server on the Siemens Climatix BACnet/IP communication module with firmware before 10.34 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...
Siemens Climatix BACnet/IP Communication Module Cross-site Scripting Vulnerability
OVERVIEW Siemens has identified a cross-site scripting XSS vulnerability in its Climatix BACnet/IP communication module. This vulnerability was reported directly to Siemens by Juan Francisco Bolivar Hernandez. Siemens has produced a new firmware update to mitigate this vulnerability. This...
BACnet/IP Device Object Detection
Binary data 7165.pasl...
BACnet/IP Protocol Detection
Binary data 7110.pasl...
BACnet/IP Protocol Detection (SCADA)
Binary data 6726.prm...