EUVD-2021-11278

Malware in sbrugna...

EUVD-2015-5180

Malware in sbrugna...

EUVD-2022-40559

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2013-7258

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in web2ldap 1.1.x before 1.1.49 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2024-42332

The researcher is showing that due to the way the SNMP trap log is parsed, an attacker can craft an SNMP trap with additional lines of information and have forged data show in the Zabbix UI. This attack requires SNMP auth to be off and/or the attacker to know the community/auth details. The attac...

XWiki Platform: Password hash might be leaked by diff once the xobject holding them is deleted

Impact It is possible to access the hash of a password by using the diff feature of the history whenever the object storing the password is deleted. Using that vulnerability it's possible for an attacker to have access to the hash password of a user if they have rights to edit the users' page. No...

ADM HDX Insight/Gateway Insight fail to display data over one month

ADM HDX Insight/Gateway Insight cannot show more than one month data although the time period was set to more than 3 Months or longer. e.g. Unable to show the "Terminated Sessions" record under path "Gateway HDX InsightUsers" over one month...

SUSE CVE-2015-5179

FreeIPA might display user data improperly via vectors involving non-printable characters...

CVE-2022-23458

Toast UI Grid is a component to display and edit data. Versions prior to 4.21.3 are vulnerable to cross-site scripting attacks when pasting specially crafted content into editable cells. This issue was fixed in version 4.21.3. There are no known workarounds...

Cross site scripting

Toast UI Grid is a component to display and edit data. Versions prior to 4.21.3 are vulnerable to cross-site scripting attacks when pasting specially crafted content into editable cells. This issue was fixed in version 4.21.3. There are no known workarounds...

CVE-2022-37952

A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...

CVE-2022-37952

A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...

Cross site scripting

A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...

CVE-2022-37952 WorkstationST - Reflected XSS in iHistorian Data Display Tags

A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST v07.09.15 could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than i...

CVE-2022-37952

General Electric WorkstationST is affected by a reflected XSS in the iHistorian Data Display, specifically in WorkstationST versions prior to 07.09.15. The issue impacts the iHistorian Data Display component and can allow an attacker to compromise a victim’s browser. WorkstationST v07.09.15 is re...

General Electric WorkstationST 跨站脚本漏洞

General Electric WorkstationST is an alarm viewer in a software suite from General Electric, USA. A security vulnerability exists in General Electric WorkstationST versions prior to 07.09.15, which stems from a cross-site scripting vulnerability in iHistorian Data Display. An attacker could explo...

CVE-2022-37952

A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST...

PT-2022-4454 · Unknown · Workstation

Name of the Vulnerable Software and Affected Versions: WorkstationST versions prior to 07.09.15 Description: A reflected cross-site scripting XSS vulnerability exists in the iHistorian Data Display of WorkstationST, which could allow an attacker to compromise a victim's browser. The vulnerability...

Xylem Aanderaa GeoView

1. EXECUTIVE SUMMARY CVSS v3 8.2 ATTENTION: Exploitable remotely/low attack complexity Vendor: Xylem, Inc. Equipment: Aanderaa GeoView Vulnerability: SQL Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to manipulate the database server. 3...

Apache Tomcat 5.5.x < 5.5.32, 7.0.x < 7.0.6 XSS Vulnerability - Linux

Apache Tomcat is prone to a cross-site scripting XSS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...