Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-30225

Malware in sbrugna...

6.1CVSS5.9AI score0.00614EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2020-30227

Malware in sbrugna...

5.3CVSS4.2AI score0.0052EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-30226

Malware in sbrugna...

9.8CVSS9.2AI score0.01227EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 3:43 p.m.6 views

CVE-2020-9405

IBL Online Weather before 4.3.5a allows unauthenticated reflected XSS via the redirect page...

6.1CVSS6AI score0.00614EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:42 p.m.6 views

CVE-2020-9407

IBL Online Weather before 4.3.5a allows attackers to obtain sensitive information by reading the IWEBSERVICEJSONRPCCOOKIE cookie...

5.3CVSS6.4AI score0.0052EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:6 p.m.8 views

CVE-2020-9406

IBL Online Weather before 4.3.5a allows unauthenticated eval injection via the queryBCP method of the Auxiliary Service...

9.8CVSS7.3AI score0.01227EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/27 12:0 a.m.3 views

IBL Online Weather Cross-Site Scripting Vulnerability

IBL Online Weather is a weather service software from iblsoft. A cross-site scripting vulnerability exists in IBL Online Weather versions prior to 4.3.5a. The vulnerability stems from a lack of proper validation of client-side data by the web application. An attacker can exploit this vulnerabilit...

6.1CVSS6.3AI score0.00614EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/27 12:0 a.m.2 views

IBL Online Weather Information Disclosure Vulnerability

IBL Online Weather is a weather service software from iblsoft. A security vulnerability exists in IBL Online Weather versions prior to 4.3.5a. The vulnerability can be exploited to read the IWEBSERVICEJSONRPCCOOKIE cookie to obtain sensitive information...

5.3CVSS6.6AI score0.0052EPSS
Exploits0References1
NVD
NVD
added 2020/02/26 12:15 a.m.14 views

CVE-2020-9406

IBL Online Weather before 4.3.5a allows unauthenticated eval injection via the queryBCP method of the Auxiliary Service...

9.8CVSS9.5AI score0.01227EPSS
Exploits0References2
OSV
OSV
added 2020/02/26 12:15 a.m.1 views

CVE-2020-9405

IBL Online Weather before 4.3.5a allows unauthenticated reflected XSS via the redirect page...

6.1CVSS6.2AI score0.00614EPSS
Exploits0References2
NVD
NVD
added 2020/02/26 12:15 a.m.11 views

CVE-2020-9407

IBL Online Weather before 4.3.5a allows attackers to obtain sensitive information by reading the IWEBSERVICEJSONRPCCOOKIE cookie...

5.3CVSS4.1AI score0.0052EPSS
Exploits0References2
OSV
OSV
added 2020/02/26 12:15 a.m.1 views

CVE-2020-9407

IBL Online Weather before 4.3.5a allows attackers to obtain sensitive information by reading the IWEBSERVICEJSONRPCCOOKIE cookie...

5.3CVSS5.8AI score0.0052EPSS
Exploits0References2
NVD
NVD
added 2020/02/26 12:15 a.m.12 views

CVE-2020-9405

IBL Online Weather before 4.3.5a allows unauthenticated reflected XSS via the redirect page...

6.1CVSS5.7AI score0.00614EPSS
Exploits0References2
OSV
OSV
added 2020/02/26 12:15 a.m.3 views

CVE-2020-9406

IBL Online Weather before 4.3.5a allows unauthenticated eval injection via the queryBCP method of the Auxiliary Service...

9.8CVSS7.3AI score0.01227EPSS
Exploits0References2
Prion
Prion
added 2020/02/26 12:15 a.m.7 views

Information disclosure

IBL Online Weather before 4.3.5a allows attackers to obtain sensitive information by reading the IWEBSERVICEJSONRPCCOOKIE cookie...

5CVSS5.1AI score0.0052EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/02/26 12:15 a.m.8 views

Cross site scripting

IBL Online Weather before 4.3.5a allows unauthenticated reflected XSS via the redirect page...

4.3CVSS6AI score0.00614EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/02/26 12:15 a.m.13 views

Design/Logic Flaw

IBL Online Weather before 4.3.5a allows unauthenticated eval injection via the queryBCP method of the Auxiliary Service...

7.5CVSS9.6AI score0.01227EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2020/02/25 12:0 a.m.5 views

PT-2020-20638 · Ibl · Ibl Online Weather

Name of the Vulnerable Software and Affected Versions: IBL Online Weather versions prior to 4.3.5a Description: The issue allows unauthenticated eval injection via the queryBCP method of the Auxiliary Service. This enables an attacker to inject malicious code without authentication...

9.8CVSS9.4AI score0.01227EPSS
Exploits0References4
CVE
CVE
added 2020/02/25 12:0 a.m.87 views

CVE-2020-9407

IBL Online Weather prior to version 4.3.5a contains an information-disclosure vulnerability that allows an attacker to read the IWEBSERVICE_JSONRPC_COOKIE cookie and obtain sensitive data. The issue affects the software’s web-facing components and is fixed by upgrading to version 4.3.5a or later....

5.3CVSS5AI score0.0052EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2020/02/25 12:0 a.m.2 views

PT-2020-20639 · Ibl · Ibl Online Weather

Name of the Vulnerable Software and Affected Versions: IBL Online Weather versions prior to 4.3.5a Description: The issue allows attackers to obtain sensitive information by reading the IWEBSERVICE JSONRPC COOKIE cookie. Recommendations: For versions prior to 4.3.5a, update to version 4.3.5a or...

5.3CVSS3.9AI score0.0052EPSS
Exploits0References4
Rows per page
Query Builder