Lucene search
K

34 matches found

Nuclei
Nuclei
added 8 hours ago48 views

Nordex NC2 - Cross-Site Scripting

Nordex NC2 contains a cross-site scripting vulnerability which allows an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks. id:...

6.1CVSS6.1AI score0.12042EPSS
Exploits1References4
NVD
NVD
added 2026/05/17 1:16 p.m.18 views

CVE-2018-25333

Nordex N149/4.0-4.5 Wind Turbine Web Server 4.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the login parameter in login.php. Attackers can submit crafted POST requests with SQL injection payloa...

8.8CVSS0.00343EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/17 12:11 p.m.39 views

CVE-2018-25333 Nordex N149/4.0-4.5 Wind Turbine Web Server SQL Injection

Nordex N149/4.0-4.5 Wind Turbine Web Server 4.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the login parameter in login.php. Attackers can submit crafted POST requests with SQL injection payloa...

8.8CVSS0.00343EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/17 12:11 p.m.11 views

EUVD-2018-21857

Nordex N149/4.0-4.5 Wind Turbine Web Server 4.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the login parameter in login.php. Attackers can submit crafted POST requests with SQL injection payloa...

8.8CVSS6.1AI score0.00343EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/17 12:11 p.m.7 views

CVE-2018-25333 Nordex N149/4.0-4.5 Wind Turbine Web Server SQL Injection

Nordex N149/4.0-4.5 Wind Turbine Web Server 4.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the login parameter in login.php. Attackers can submit crafted POST requests with SQL injection payloa...

8.8CVSS6.1AI score0.00343EPSS
Exploits0References3
CVE
CVE
added 2026/05/17 12:11 p.m.20 views

CVE-2018-25333

CVE-2018-25333 concerns the Nordex N149/4.0-4.5 Wind Turbine Web Server. The vulnerability is an SQL injection in the login flow: attackers can craft POST requests to login.php (no authentication required) to execute arbitrary SQL and potentially bypass login, leaking data. Affected software is N...

8.8CVSS6.1AI score0.00343EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/17 12:11 p.m.8 views

CVE-2018-25333

Nordex N149/4.0-4.5 Wind Turbine Web Server 4.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the login parameter in login.php. Attackers can submit crafted POST requests with SQL injection payloa...

8.8CVSS6.1AI score0.00343EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/05/17 12:0 a.m.11 views

Nordex N149/4.0-4.5 Wind Turbine Web Server SQL注入漏洞

The Nordex N149/4.0-4.5 Wind Turbine Web Server is a web server component developed by the German company Nordex, used for remote monitoring and management of the Nordex N149 wind turbine system. The 4.0 version of the Nordex N149/4.0-4.5 Wind Turbine Web Server has a SQL injection vulnerability...

8.8CVSS6.2AI score0.00343EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-5296

Malware in sbrugna...

4.3CVSS6.4AI score0.01671EPSS
Exploits0References3
Krebs on Security
Krebs on Security
added 2023/05/05 1:50 a.m.34 views

$10M Is Yours If You Can Get This Guy to Leave Russia

The U.S. government this week put a $10 million bounty on a Russian man who for the past 18 years operated Try2Check, one of the cybercrime undergrounds most trusted services for checking the validity of stolen credit card data. U.S. authorities say 43-year-old Denis Kulkovs card-checking service...

6.8AI score
Exploits0
HackRead
HackRead
added 2022/04/15 4:16 p.m.20 views

Conti Ransomware Gang Hits German Wind Turbine Giant Nordex

By Deeba Ahmed All of Nordexs internal IT systems were shut down, and remote access to the turbines was disrupted due… This is a post from HackRead.com Read the original post: Conti Ransomware Gang Hits German Wind Turbine Giant Nordex...

2.2AI score
Exploits0
CNVD
CNVD
added 2018/06/07 12:0 a.m.1 views

Nordex N149/4.0-4.5 Wind Turbine Web Server SQL Injection Vulnerability

A SQL injection vulnerability exists in Nordex N149/4.0-4.5 Wind Turbine Web Server. An attacker can exploit the vulnerability to obtain sensitive information from the database...

7.7AI score
Exploits0References1
Packet Storm
Packet Storm
added 2018/05/22 12:0 a.m.42 views

Nordex N149/4.0-4.5 Wind Turbine Web Server SQL Injection

Exploit Title: Nordex N149/4.0-4.5 Wind Turbine Web Server - SQL Injection Date: 21-05-2018 Exploit Author: t4rkd3vilz Vendor Homepage: http://www.nordex-online.com Tested on: Windows Version: N149/4.0-4.5 Wind Turbine Category: webapps --- Proof Of Concept -------- Request POST /php/login.php...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2018/05/22 12:0 a.m.38 views

Nordex N149/4.0-4.5 Scada Web Server SQL Injection

Exploit Title: Nordex N149/4.0-4.5 Scada Web Server - SQL Injection Date: 21-05-2018 Exploit Author: t4rkd3vilz Vendor Homepage: http://www.nordex-online.com Tested on: Windows Version: N149/4.0-4.5 Category: webapps --- Proof Of Concept -------- Request POST /php/login.php HTTP/1.1 Cache-Control...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/05/22 12:0 a.m.43 views

Nordex N149/4.0-4.5 - SQL Injection

Exploit Title: Nordex N149/4.0-4.5 Wind Turbine Web Server - SQL Injection Date: 21-05-2018 Exploit Author: t4rkd3vilz Vendor Homepage: http://www.nordex-online.com Tested on: Windows Version: N149/4.0-4.5 Wind Turbine Category: webapps --- Proof Of Concept -------- Request POST /php/login.php...

7.4AI score
Exploits0
0day.today
0day.today
added 2018/05/22 12:0 a.m.51 views

Nordex N149/4.0-4.5 - SQL Injection Vulnerability

Exploit for hardware platform in category web applications Exploit Title: Nordex N149/4.0-4.5 Wind Turbine Web Server - SQL Injection Exploit Author: t4rkd3vilz Vendor Homepage: http://www.nordex-online.com Tested on: Windows Version: N149/4.0-4.5 Wind Turbine Category: webapps --- Proof Of Conce...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2018/05/22 12:0 a.m.24 views

Nordex N1494.0-4.5 - SQL Injection

Nordex N1494.0-4.5 - SQL Injection Exploit Title: Nordex N149/4.0-4.5 Wind Turbine Web Server - SQL Injection Date: 21-05-2018 Exploit Author: t4rkd3vilz Vendor Homepage: http://www.nordex-online.com Tested on: Windows Version: N149/4.0-4.5 Wind Turbine Category: webapps --- Proof Of Concept...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2015/12/24 12:0 a.m.259 views

Nordex Control 2 (NC2) SCADA 16 Cross Site Scripting

Nordex NC2 XSS Vulnerability AFFECTED PRODUCTS Nordex Control 2 NC2 SCADA V16 and prior versions. Nordex is a company based in Germany that maintains offices in countries around the world. The affected product, Nordex Control 2, is a web-based SCADA system for wind power plants. According to...

4.3CVSS0.3AI score0.12042EPSS
Exploits1
CNVD
CNVD
added 2015/10/21 12:0 a.m.2 views

Multiple Cross-Site Scripting Vulnerabilities in Nordex NC2

Nordex Control 2 is a web-based SCADA system for wind power stations. Multiple cross-site scripting vulnerabilities exist in the Nordex Control 2 NC2 SCADA 16 and earlier versions, Wind Farm Portal application. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTM...

4.3CVSS6.2AI score0.12042EPSS
Exploits1References1
NVD
NVD
added 2015/10/18 7:59 p.m.15 views

CVE-2015-6477

Multiple cross-site scripting XSS vulnerabilities in the Wind Farm Portal application in Nordex Control 2 NC2 SCADA 16 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS5.7AI score0.12042EPSS
Exploits1References3
Rows per page
Query Builder