Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-38895

Malicious code in bioql PyPI...

4.8CVSS5.4AI score0.00393EPSS
Exploits1References1
CNVD
CNVD
added 2024/09/23 12:0 a.m.7 views

Unspecified vulnerability in DIR-X4860 of AUO Electronic Equipment (Shanghai) Co., Ltd (CNVD-2024-39256)

The DIR-X4860 is a wireless router from China's AUO D-Link. A security vulnerability exists in the DIR-X4860 of AUO Electronic Devices Shanghai Co. An unauthorized remote attacker could exploit the vulnerability and be able to log in and execute operating system commands using hard-coded...

9.8CVSS7.2AI score0.01028EPSS
Exploits0References1
CNVD
CNVD
added 2023/12/11 12:0 a.m.6 views

SQL Injection Vulnerability in DAR-7000 of AUO Electronic Equipment (Shanghai) Co.

DAR-7000 is an Internet Behavior Audit Gateway from AUO Electronic Devices Shanghai Co. AUO DAR-7000 suffers from a SQL injection vulnerability, which originates from the lack of validation of the parameter id of the file /user/inc/workidajax.php for externally entered SQL statements. The...

9.8CVSS8AI score0.03968EPSS
Exploits1References1
CNVD
CNVD
added 2023/06/30 12:0 a.m.29 views

Authentication Bypass Vulnerability in DSL-224 Version 3.0.10 of AUO Electronic Devices (Shanghai) Co.

AUO Electronic Devices Shanghai Co. DSL-224 is a wireless router from China's AUO D-Link. An authentication bypass vulnerability exists in the AUO DSL-224 version 3.0.10, which stems from an improper restriction of too many authentication attempts. An attacker could exploit the vulnerability to...

9.8CVSS9.5AI score0.01399EPSS
Exploits0References1
NVD
NVD
added 2023/06/12 1:15 p.m.11 views

CVE-2023-34855

A Cross Site Scripting XSS vulnerability in Youxun Electronic Equipment Shanghai Co., Ltd AC Centralized Management Platform v1.02.040 allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /upfile.cgi...

4.8CVSS5.1AI score0.00393EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/06/12 1:15 p.m.5 views

CVE-2023-34855

A Cross Site Scripting XSS vulnerability in Youxun Electronic Equipment Shanghai Co., Ltd AC Centralized Management Platform v1.02.040 allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /upfile.cgi...

4.8CVSS6.2AI score0.00393EPSS
Exploits1References2
Prion
Prion
added 2023/06/12 1:15 p.m.17 views

Cross site scripting

A Cross Site Scripting XSS vulnerability in Youxun Electronic Equipment Shanghai Co., Ltd AC Centralized Management Platform v1.02.040 allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /upfile.cgi...

4.3CVSS5.1AI score0.00393EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/06/12 12:0 a.m.17 views

CVE-2023-34855

A Cross Site Scripting XSS vulnerability in Youxun Electronic Equipment Shanghai Co., Ltd AC Centralized Management Platform v1.02.040 allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /upfile.cgi...

5.3AI score0.00393EPSS
Exploits1References1
CVE
CVE
added 2023/06/12 12:0 a.m.52 views

CVE-2023-34855

CVE-2023-34855 is an XSS in Youxun Electronic Equipment (Shanghai) Co., Ltd AC Centralized Management Platform v1.02.040. The vulnerability allows an attacker to upload a crafted HTML file via the upfile.cgi interface, resulting in arbitrary code execution within the affected platform. The issue ...

4.8CVSS5.1AI score0.00393EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/12 12:0 a.m.7 views

CVE-2023-34855

A Cross Site Scripting XSS vulnerability in Youxun Electronic Equipment Shanghai Co., Ltd AC Centralized Management Platform v1.02.040 allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /upfile.cgi...

6.2AI score0.00393EPSS
Exploits1References1
HackRead
HackRead
added 2023/04/11 2:15 p.m.20 views

Estonian Arrested: Accused of Supplying Hacking Tools to Russia

By Habiba Rashid Shevlyakov obtained delicate electronic equipment from American manufacturers for the use of Russian end-users, such as defence contractors and other government agencies This is a post from HackRead.com Read the original post: Estonian Arrested: Accused of Supplying Hacking Tools...

6.7AI score
Exploits0
CNVD
CNVD
added 2021/08/23 12:0 a.m.7 views

Command Execution Vulnerability in DIR-846 at AUO Electronic Devices (Shanghai) Co.

The DIR-846 router is a wireless router product for users with gaming and video entertainment needs. A command execution vulnerability exists in the AUO Electronic Devices Shanghai Co. DIR-846, which can be exploited by an attacker to execute arbitrary code...

7.9AI score
Exploits0
CNVD
CNVD
added 2021/04/28 12:0 a.m.2 views

Logic Flaw Vulnerability in DVA-2800 Management Platform, DSL-2888A Management Platform

AUO Electronic Equipment Shanghai Co., Ltd. is a company that mainly deals with network equipment, wireless equipment, switches and other items. A logic flaw vulnerability exists in the DVA-2800 management platform and DSL-2888A management platform, which can be exploited by attackers to obtain...

6.7AI score
Exploits0
CNVD
CNVD
added 2021/04/13 12:0 a.m.3 views

Weak password vulnerability in DHP-W310AV

AUO Electronic Equipment Shanghai Co., Ltd. is a company that mainly deals with network equipment, wireless equipment, switches and other items. A weak password vulnerability exists in DHP-W310AV, which can be exploited by attackers to obtain sensitive information...

7AI score
Exploits0
CNVD
CNVD
added 2021/03/25 12:0 a.m.4 views

Weak Password Vulnerability in DSL-2730E of AUO Electronic Equipment (Shanghai) Co.

DSL-2730E is a routing device of AUO Electronic Equipment Shanghai Co. A weak password vulnerability exists in the AUO Electronic Devices Shanghai Co. DSL-2730E, which can be exploited by attackers to obtain sensitive information...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2020/05/06 7:42 p.m.56 views

InfinityBlack Dismantled After Selling Millions of Credentials

The InfinityBlack hacking group, which is responsible for selling millions of stolen credentials, has been dismantled. Polish and Swiss law-enforcement authorities, supported by Europol, arrested five individuals in Poland believed to be members of InfinityBlack, on April 29. According to Europol...

7.4AI score
Exploits0References10
Rows per page
Query Builder