Lucene search
+L

21 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-33245

Malicious code in bioql PyPI...

4.8CVSS5.4AI score0.00448EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 3:40 a.m.6 views

CVE-2023-29707

Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...

4.8CVSS6AI score0.00448EPSS
Exploits1References1
Openbugbounty
Openbugbounty
added 2024/03/13 6:41 a.m.5 views

talloires-lac-annecy.com Cross Site Scripting vulnerability OBB-3870352

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
NVD
NVD
added 2023/06/22 11:15 a.m.20 views

CVE-2023-29707

Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...

4.8CVSS5AI score0.00448EPSS
Exploits1References2
OSV
OSV
added 2023/06/22 11:15 a.m.2 views

CVE-2023-29707

Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...

4.8CVSS5.9AI score0.00448EPSS
Exploits1References2
Prion
Prion
added 2023/06/22 11:15 a.m.14 views

Cross site scripting

Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...

4.3CVSS4.9AI score0.00448EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/06/22 12:0 a.m.5 views

PT-2023-22363 · Gbcom · Gbcom Lac Web Control Center

Name of the Vulnerable Software and Affected Versions: GBCOM LAC WEB Control Center version lac-1.3.x Description: The issue allows attackers to create an arbitrary device through a Cross Site Scripting XSS vulnerability. Recommendations: For GBCOM LAC WEB Control Center version lac-1.3.x, consid...

4.8CVSS5AI score0.00448EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/06/22 12:0 a.m.19 views

CVE-2023-29707

Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...

5.2AI score0.00448EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/06/22 12:0 a.m.13 views

CVE-2023-29707

Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...

6AI score0.00448EPSS
Exploits1References2
CVE
CVE
added 2023/06/22 12:0 a.m.47 views

CVE-2023-29707

CVE-2023-29707 concerns a cross-site scripting (XSS) vulnerability in the GBCOM LAC WEB Control Center, version lac-1.3.x. The available sources in the connected documents indicate that an attacker could leverage this flaw to create an arbitrary device. The CVE entry notes a CVSS v3.1 base score ...

4.8CVSS5AI score0.00448EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2023/05/17 3:49 a.m.31 views

GHSA-V5GW-MW7F-84PX Starlette has Path Traversal vulnerability in StaticFiles

Summary When using StaticFiles, if there's a file or directory that starts with the same name as the StaticFiles directory, that file or directory is also exposed via StaticFiles which is a path traversal vulnerability. Details The root cause of this issue is the usage of os.path.commonprefix:...

6.3CVSS7.3AI score0.02032EPSS
Exploits1References8
Openbugbounty
Openbugbounty
added 2022/12/20 8:38 a.m.8 views

lac-parfumeur.ch Cross Site Scripting vulnerability OBB-3110038

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/12/10 4:11 p.m.16 views

bordeaux-lac-ecole-moto.com Cross Site Scripting vulnerability OBB-3093812

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/01/07 12:50 p.m.15 views

lac-mac.com Cross Site Scripting vulnerability OBB-2327049

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Securelist
Securelist
added 2021/03/30 10:0 a.m.208 views

APT10: sophisticated multi-layered loader Ecipekac discovered in A41APT campaign

Why is the campaign called A41APT? In 2019, we observed an APT campaign targeting multiple industries, including the Japanese manufacturing industry and its overseas operations, that was designed to steal information. We named the campaign A41APT not APT41 which is derived from the host name...

0.1AI score
Exploits0
CNVD
CNVD
added 2021/03/26 12:0 a.m.6 views

SQL Injection Vulnerability in LAC WEB Control Center of Shanghai Huanchuang Communication Technology Co.

GBCOM is a high-tech company focusing on technical research, product development and sales in the field of wireless broadband communication with WiFi technology as its core. A SQL injection vulnerability exists in the LAC WEB Control Center of Shanghai Huanchuang Communication Technology Co., Ltd...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/03/25 12:0 a.m.4 views

Information Leakage Vulnerability in LAC WEB Control Center of Shanghai Huanchuang Communication Technology Co.

Huntron Communications LAC is a WiFi product. Shanghai Huanchuang Communication Technology Co., Ltd LAC WEB control center has an information leakage vulnerability, attackers can download sensitive files to obtain sensitive information...

6.6AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2019/11/20 3:51 p.m.82 views

Active C2 Discovery Using Protocol Emulation Part1 (HYDSEVEN NetWire)

Malware C2 addresses can be an important IOC to detect known threats. In order to obtain C2 information, we first need malware samples which are then analyzed dynamically or statically. However the analysis task is often times not straightforward. Increasingly anti-analysis methods are implemente...

7.5AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/07/25 2:32 a.m.11 views

lac-school.com XSS vulnerability

Open Bug Bounty ID: OBB-653829 Description| Value ---|--- Affected Website:| lac-school.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
n0where
n0where
added 2015/04/16 3:24 p.m.527 views

Android IMSI-Catcher Detector: AIMSICD

AIMSICD is an app to detect IMSI-Catchers . IMSI-Catchers are false mobile towers base stations acting between the target mobile phones and the real towers of service providers. As such they are considered a Man-In-The-Middle MITM attack. In the USA the IMSI-Catcher technology is known under the...

1.1AI score
Exploits0References14
Rows per page
Query Builder