EUVD-2019-16366

Malware in sbrugna...

Schneider Electric多款产品 输入验证错误漏洞

The Schneider Electric Modicon M340 is a mid-range PLC programmable logic controller for industrial processes and infrastructure from Schneider Electric France. An input validation error vulnerability exists in various Schneider Electric products, which stems from improper input validation and...

CVE-2019-6812

A CWE-798 use of hardcoded credentials vulnerability exists in BMX-NOR-0200H with firmware versions prior to V1.7 IR 19 which could cause a confidentiality issue when using FTP protocol...

Schneider Electric BMX Use of Hard-coded Credentials (CVE-2019-6812)

A CWE-798 use of hardcoded credentials vulnerability exists in BMX- NOR-0200H with firmware versions prior to V1.7 IR 19 which could cause a confidentiality issue when using FTP protocol. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

CVE-2021-28911

BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow unauthenticated attackers access to /tmp path which contains some sensitive data e.g. device serial number. Having those info, a possible loginId can be self-calculated in a brute force attack against BMX interface. This is usable and part...

bmx-results.com Cross Site Scripting vulnerability OBB-1389797

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

detski-velosiped-bmx-1650.stokisport.com Cross Site Scripting vulnerability OBB-1344388

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

CVE-2019-6812

A CWE-798 use of hardcoded credentials vulnerability exists in BMX-NOR-0200H with firmware versions prior to V1.7 IR 19 which could cause a confidentiality issue when using FTP protocol...

CVE-2019-6812

A CWE-798 use of hardcoded credentials vulnerability exists in BMX-NOR-0200H with firmware versions prior to V1.7 IR 19 which could cause a confidentiality issue when using FTP protocol...

Hardcoded credentials

A CWE-798 use of hardcoded credentials vulnerability exists in BMX-NOR-0200H with firmware versions prior to V1.7 IR 19 which could cause a confidentiality issue when using FTP protocol...

CVE-2019-6812

A CWE-798 use of hardcoded credentials vulnerability exists in BMX-NOR-0200H with firmware versions prior to V1.7 IR 19 which could cause a confidentiality issue when using FTP protocol...

CVE-2019-6812

Schneider Electric BMX-NOR-0200H firmware prior to V1.7 IR 19 has a CWE-798 hardcoded credentials vulnerability in the FTP service, leading to potential confidentiality impact. The issue affects BMX-NOR-0200H and is not described with exploitation details in the provided docs. Remediation is to u...

Modicon M340 BMX P34 CPU Module Detection

Binary data 35.prm...

Schneider Electric BMX P34 CPU B Open Redirect

Exploit Title: Schneider Electric BMX P34 CPU B - Unvalidated Redirects and Forwards Date: 2018-07-21 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.schneider-electric.com/ Hardware Link : https://www.schneider-electric.com/en/product/BMXP342020/ Software : Schneider Electric...

Schneider Electric BMX P34 CPU B Open Redirect

Exploit Title: Schneider Electric BMX P34 CPU B - Unvalidated Redirects and Forwards Date: 2018-07-21 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.schneider-electric.com/ Hardware Link : https://www.schneider-electric.com/en/product/BMXP342020/ Software : Schneider Electric...

bmx-zugerracer.ch XSS vulnerability

Open Bug Bounty ID: OBB-548021 Description| Value ---|--- Affected Website:| bmx-zugerracer.ch Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

BMX Extreme - Bike Racing - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application BMX Extreme - Bike Racing published at the 'play' market has multiple vulnerabilities...

Pumped: BMX Free - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Pumped: BMX Free published at the 'play' market has multiple vulnerabilities...

Stickman BMX - Customized SSL, Redefined SSL Common Names verifier, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Stickman BMX published at the 'play' market has multiple vulnerabilities...

MegaRamp Skate & BMX FREE - Customized SSL, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application MegaRamp Skate & BMX FREE published at the 'play' market has multiple vulnerabilities...