3851 matches found
CVE-2018-5476
CVE-2018-5476 affects Delta Electronics Delta Industrial Automation DOPSoft (versions ≤ 4.00.01). The issue is a stack-based buffer overflow triggered by processing specially crafted DOP/DPB/DPA files (and related macro structures), allowing remote code execution. Several advisories (ZDI-18-221, ...
CVE-2017-16751
CVE-2017-16751 affects Delta Electronics’ Delta Industrial Automation Screen Editor (version 2.00.23.00 or prior). The vulnerability is a stack-based buffer overflow triggered while parsing .dpb project files , which could allow an attacker to execute arbitrary code. Multiple connected sources co...
CVE-2017-16749
Delta Electronics Delta Industrial Automation Screen Editor (v2.00.23.00 or earlier) contains a Use-after-Free in the DPB project file parser (CDocument path). Exploitation requires user interaction and is locally scoped (AV:L, UI:R). Successful exploitation could allow arbitrary code execution. ...
CVE-2017-16747
CVE-2017-16747 affects Delta Electronics’ Delta Industrial Automation Screen Editor (Version 2.00.23.00 and earlier). The vulnerability is an out-of-bounds write while processing specially crafted .dpb project files, potentially allowing remote code execution or program crashes. Public exploitati...
CVE-2017-16745
Delta Electronics’ Delta Industrial Automation Screen Editor (Version 2.00.23.00 and earlier) contains a type confusion vulnerability in the DPB project file parsing, specifically involving the CThemeWnd handling. Exploitation with specially crafted DPB files could allow remote code execution. Pu...
CVE-2018-5476
A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial Automation DOPSoft, Version 4.00.01 or prior. Stack-based buffer overflow vulnerabilities caused by processing specially crafted .dop or .dpb files may allow an attacker to remotely execute arbitrary code...
Delta Electronics Delta Industrial Automation DOPSoft Heap Buffer Overflow Vulnerability
Delta Industrial Automation DOPSoft is a touch screen programming software from Delta Electronics. Delta Electronics Delta Industrial Automation DOPSoft handles a heap buffer overflow vulnerability in specially crafted .dop or .dpb files, which can be exploited by an attacker to execute arbitrary...
Delta Electronics Delta Industrial Automation DOPSoft
CVSS v3 6.3 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Delta Electronics Equipment: Delta Industrial Automation DOPSoft Vulnerability: Stack-based Buffer Overflow AFFECTED PRODUCTS The following version of Delta Industrial Automation DOPSoft, a human machine interface HMI...
Delta Electronics WPLSoft Out-of-Bounds Write Vulnerability
WPLSoft Delta PLC Programming Software is a PLC program programming software launched by Delta Electronics for use in the WINDOWS operating system environment. An out-of-bounds write vulnerability exists in Delta Electronics WPLSoft, where the application writes data from a file outside the range...
Delta Electronics WPLSoft Stack Buffer Overflow Vulnerability
WPLSoft Delta PLC Programming Software is a PLC program programming software launched by Delta Electronics for use in the WINDOWS operating system environment. A stack buffer overflow vulnerability exists in Delta Electronics WPLSoft, where the application uses a fixed-length heap buffer, where a...
Delta Electronics WPLSoft Heap Buffer Overflow Vulnerability
WPLSoft Delta PLC Programming Software is a PLC program programming software launched by Delta Electronics for use in the WINDOWS operating system environment. A heap buffer overflow vulnerability exists in Delta Electronics WPLSoft, where the application uses a fixed-length heap buffer, where a...
Delta Electronics WPLSoft
CVSS v3 8.3 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Delta Electronics Equipment: WPLSoft Vulnerabilities: Stack-based Buffer Overflow, Heap-based Buffer Overflow, Out-of-bounds Write. AFFECTED PRODUCTS The following versions of WPLSoft, a PLC programming software, are...
research.investors.com XSS vulnerability
Open Bug Bounty ID: OBB-547966 Description| Value ---|--- Affected Website:| research.investors.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
catalog.totalvideoproducts.com XSS vulnerability
Open Bug Bounty ID: OBB-537286 Description| Value ---|--- Affected Website:| catalog.totalvideoproducts.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Delta Electronics Delta Industrial Automation Screen Editor
CVSS v3 5.5 ATTENTION: Low skill level to exploit. Vendor: Delta Electronics, Incorporated Delta Electronics Equipment: Delta Industrial Automation Screen Editor Vulnerabilities: Stack-based Buffer Overflow, Use-after-Free, Out-of-bounds Write, Type Confusion AFFECTED PRODUCTS The following...
Joomla Advertisement Board Classifieds 3.2.0 Shell Upload
Title: Advertisement board Joomla classifieds extension 3.2.0 - Remote Shell Upload Vulnerability Credit: Bilal KARDADOU Vendor: http://ordasoft.com/ URL: http://ordasoft.com/advertisement-board-joomla-classifieds-extension Product: 'Advertisement board Joomla classifieds extension 3.2.0'...
InfraPower PPS-02-S Q213V1 Local File Disclosure Vulnerability
Summary InfraPower Manager PPS-02-S is a FREE built-in GUI of each IP dongle IPD-02-S only to remotely monitor the connected PDUs. Patented IP Dongle provides IP remote access to the PDUs by a true network IP address chain. Only 1xIP dongle allows access to max. 16 PDUs in daisy chain - which is ...
InfraPower PPS-02-S Q213V1 Multiple XSS Vulnerabilities
Summary InfraPower Manager PPS-02-S is a FREE built-in GUI of each IP dongle IPD-02-S only to remotely monitor the connected PDUs. Patented IP Dongle provides IP remote access to the PDUs by a true network IP address chain. Only 1xIP dongle allows access to max. 16 PDUs in daisy chain - which is ...
InfraPower PPS-02-S Q213V1 Insecure Direct Object Reference Authorization Bypass
Summary InfraPower Manager PPS-02-S is a FREE built-in GUI of each IP dongle IPD-02-S only to remotely monitor the connected PDUs. Patented IP Dongle provides IP remote access to the PDUs by a true network IP address chain. Only 1xIP dongle allows access to max. 16 PDUs in daisy chain - which is ...
InfraPower PPS-02-S Q213V1 Cross-Site Request Forgery
Summary InfraPower Manager PPS-02-S is a FREE built-in GUI of each IP dongle IPD-02-S only to remotely monitor the connected PDUs. Patented IP Dongle provides IP remote access to the PDUs by a true network IP address chain. Only 1xIP dongle allows access to max. 16 PDUs in daisy chain - which is ...