EUVD-2022-44836

Malicious code in bioql PyPI...

hartford.areaconnect.com Cross Site Scripting vulnerability OBB-3852501

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

hartford-theater.com Cross Site Scripting vulnerability OBB-3553011

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

hartford-theater.com Cross Site Scripting vulnerability OBB-3227015

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2022-41648

The HEIDENHAIN Controller TNC 640 NC software Version 340590 07 SP5, is vulnerable to improper authentication in its DNC communication for CNC machines. Authentication is not enabled by default for DNC communication. This vulnerability may allow an attacker to deny service on the production line,...

Authentication flaw

The HEIDENHAIN Controller TNC 640, version 340590 07 SP5, running HEROS 5.08.3 controlling the HARTFORD 5A-65E CNC machine is vulnerable to improper authentication, which may allow an attacker to deny service to the production line, steal sensitive data from the production line, and alter any...

CVE-2022-41648

The HEIDENHAIN Controller TNC 640 NC software Version 340590 07 SP5, is vulnerable to improper authentication in its DNC communication for CNC machines. Authentication is not enabled by default for DNC communication. This vulnerability may allow an attacker to deny service on the production line,...

CVE-2022-41648

The CVE-2022-41648 vulnerability affects HEIDENHAIN Controller TNC 640 (software Version 340590 07 SP5, running HEROS 5.08.3) used in CNC/HARTFORD 5A-65E configurations. It is described as an improper authentication flaw in DNC communication that is not enabled by default, allowing potential remo...

HEIDENHAIN Controller TNC (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely Vendor: HEIDENHAIN Equipment: HEIDENHAIN TNC 640 controlling a HARTFORD 5A-65E CNC machine Vulnerability: Improper Authentication 2. RISK EVALUATION Successful exploitation of this vulnerability could cause a loss of sensitive data,...

hg-win-assessor.hartford.gov Cross Site Scripting vulnerability OBB-2243405

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

hg-win-assessor.hartford.gov Cross Site Scripting vulnerability OBB-2225275

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

assessor1.hartford.gov Cross Site Scripting vulnerability OBB-2159365

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

assessor1.hartford.gov Cross Site Scripting vulnerability OBB-2154255

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

assessor1.hartford.gov Cross Site Scripting vulnerability OBB-2153105

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

hartford.edu XSS vulnerability

Vulnerable URL: http://www.hartford.edu/NewsEvents/ObserverPast/ObserverSummer07/mediaplayer.swf?file=http://content.bitsontherun.com/videos/bkaovAYt-364%20766.flv=falseℑ=http://appsec.ws/ExploitDB/cMon.jpg=true=javascript:confirm/openbugbounty/;//=blank&.swf Details: Description| Value ---|---...

The Hartford, Hacked

Hackers reportedly broke into and installed password-stealing programs on a number of servers belonging to insurance giant The Hartford, according to a ComputerWorld report. The 200-year-old, 28,000 employee strong company sent a letter of warning to some 300 employees, contractors and a small...

Windows Servers Hacked at The Hartford Insurance Company !

Hackers have broken into The Hartford insurance company and installed password-stealing programs on several of the company's Windows servers. In a warning letter sent last month to about 300 employees, contractors, and a handful of customers, the company said it discovered the infection in late...

Unfixed XSS vulnerability at hartford.2.homescape.com

Security researcher PhysX, has submitted on 16/03/2008 a cross-site-scripting XSS vulnerability affecting hartford.2.homescape.com, which at the time of submission ranked 15868 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 26/05/2008. It is...