7 matches found
EUVD-2014-2407
Malware in sbrugna...
CVE-2014-2370
Cross-site scripting XSS vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to inject arbitrary web script or HTML via crafted data...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to inject arbitrary web script or HTML via crafted data...
CVE-2014-2370
Summary: CVE-2014-2370 is an XSS vulnerability in Omron NS-series HMI terminals (NS5/8/10/12/15) with software versions 8.1xx–8.68x. The root cause is improper neutralization of input during web page generation, allowing remote authenticated users to inject arbitrary script or HTML. Impact (as do...
CVE-2014-2369 Omron NS Series HMI Cross-Site Request Forgery
Cross-site request forgery CSRF vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors...
CVE-2014-2369
Summary (CVE-2014-2369) CSRF vulnerability in Omron NS series HMI terminals (NS5/NS8/NS10/NS12/NS15; firmware 8.1xx–8.68x) could allow a remote authenticated attacker to hijack a victim’s session. Root cause: inadequate request verification in the web application (CWE-352). CVSSv2 base scores: NV...