48 matches found
CVE-2019-12167
httpGetSet/httpGet.htm on Emerson Network Power Liebert Challenger 5.1E0.5 devices allows XSS via the statusstr parameter...
EUVD-2018-4875
Malware in sbrugna...
EUVD-2019-3816
Malware in sbrugna...
EUVD-2016-9196
Malware in sbrugna...
EUVD-2015-7191
Malware in sbrugna...
CVE-2025-46412 Vertiv Liebert RDU101 and UNITY Authentication Bypass Using an Alternate Path or Channel
Affected Vertiv products do not properly protect webserver functions that could allow an attacker to bypass authentication...
Vertiv Liebert RDU101和Vertiv Liebert UNITY 安全漏洞
The Vertiv Liebert RDU101 and Vertiv Liebert UNITY are both products of Vertiv Corporation, U.S.A. The Vertiv Liebert RDU101 is a communication card.The Vertiv Liebert UNITY is a network card that provides Vertiv devices with network access, environmental sensor data, and third-party interface...
Vertiv Liebert RDU101和Vertiv Liebert UNITY 安全漏洞
The Vertiv Liebert RDU101 and Vertiv Liebert UNITY are both products of Vertiv Corporation, U.S.A. The Vertiv Liebert RDU101 is a communication card.The Vertiv Liebert UNITY is a network card that provides Vertiv devices with network access, environmental sensor data, and third-party interface...
CISA Releases Thirteen Industrial Control Systems Advisories
CISA released thirteen Industrial Control Systems ICS advisories on May 20, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-140-01 ABUP IoT Cloud Platform ICSA-25-140-02 National Instruments Circuit Design Sui...
liebert-bau.de Cross Site Scripting vulnerability OBB-3723131
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Automated Logic Corporation ALC WebCTRL, Liebert SiteScan, Carrier i-VU Improper Restriction of XML External Entity Reference (CVE-2016-5795)
An XXE issue was discovered in Automated Logic Corporation ALC Liebert SiteScan Web Version 6.5 and prior, ALC WebCTRL Version 6.5 and prior, and Carrier i-Vu Version 6.5 and prior. An attacker could enter malicious input to WebCTRL, i-Vu, or SiteScan Web through a weakly configured XML parser...
Vertiv Liebert SiteScan Web Improper Restriction of XML External Entity Reference (CVE-2016-8348)
An XML External Entity XXE issue was discovered in Emerson Liebert SiteScan Web Version 6.5, and prior. An attacker may enter malicious input to Liebert SiteScan through a weakly configured XML parser causing the application to execute arbitrary code or disclose file contents from a server or...
Automated Logic Corporation ALC WebCTRL, Liebert SiteScan, Carrier i-VU Improper Restriction of XML External Entity Reference (CVE-2016-5795)
An XXE issue was discovered in Automated Logic Corporation ALC Liebert SiteScan Web Version 6.5 and prior, ALC WebCTRL Version 6.5 and prior, and Carrier i-Vu Version 6.5 and prior. An attacker could enter malicious input to WebCTRL, i-Vu, or SiteScan Web through a weakly configured XML parser...
Automated Logic Corporation ALC WebCTRL, Liebert SiteScan, Carrier i-VU Improper Restriction of XML External Entity Reference (CVE-2016-5795)
An XXE issue was discovered in Automated Logic Corporation ALC Liebert SiteScan Web Version 6.5 and prior, ALC WebCTRL Version 6.5 and prior, and Carrier i-Vu Version 6.5 and prior. An attacker could enter malicious input to WebCTRL, i-Vu, or SiteScan Web through a weakly configured XML parser...
pilot.liebert.com Cross Site Scripting vulnerability
Security Researcher geeknik Helped patch 8584 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting pilot.liebert.com website and its users. Following...
CVE-2019-12167
httpGetSet/httpGet.htm on Emerson Network Power Liebert Challenger 5.1E0.5 devices allows XSS via the statusstr parameter...
Design/Logic Flaw
httpGetSet/httpGet.htm on Emerson Network Power Liebert Challenger 5.1E0.5 devices allows XSS via the statusstr parameter...
CVE-2019-12167
httpGetSet/httpGet.htm on Emerson Network Power Liebert Challenger 5.1E0.5 devices allows XSS via the statusstr parameter...
CVE-2019-12167
httpGetSet/httpGet.htm on Emerson Network Power Liebert Challenger 5.1E0.5 devices allows XSS via the statusstr parameter...
CVE-2019-12167
The CVE-2019-12167 entry affects Emerson Network Power Liebert Challenger 5.1E0.5 devices. The vulnerability exists in httpGetSet/httpGet.htm via the statusstr parameter, enabling Cross Site Scripting (XSS). Reported impact is that a remote attacker can inject scripts into a request and have the ...