13 matches found
EUVD-2021-16134
Malware in sbrugna...
EUVD-2021-16135
Malware in sbrugna...
CVE-2021-29661
Softing AG OPC Toolbox through 4.10.1.13035 allows /en/diagvalues.html Stored XSS via the ITEMLISTVALUESITEMID parameter, resulting in JavaScript payload injection into the trace file. This payload will then be triggered every time an authenticated user browses the page containing it...
CVE-2021-29660
A Cross-Site Request Forgery CSRF vulnerability in en/cfgsetpwd.html in Softing AG OPC Toolbox through 4.10.1.13035 allows attackers to reset the administrative password by inducing the Administrator user to browse a URL controlled by an attacker...
CVE-2021-29660
A Cross-Site Request Forgery CSRF vulnerability in en/cfgsetpwd.html in Softing AG OPC Toolbox through 4.10.1.13035 allows attackers to reset the administrative password by inducing the Administrator user to browse a URL controlled by an attacker...
Cross site request forgery (csrf)
A Cross-Site Request Forgery CSRF vulnerability in en/cfgsetpwd.html in Softing AG OPC Toolbox through 4.10.1.13035 allows attackers to reset the administrative password by inducing the Administrator user to browse a URL controlled by an attacker...
CVE-2021-29661
Softing AG OPC Toolbox through 4.10.1.13035 allows /en/diagvalues.html Stored XSS via the ITEMLISTVALUESITEMID parameter, resulting in JavaScript payload injection into the trace file. This payload will then be triggered every time an authenticated user browses the page containing it...
CVE-2021-29661
CVE-2021-29661 affects Softing AG OPC Toolbox prior to or including 4.10.1.13035. The issue is a Stored XSS vulnerability in the page /en/diag_values.html, exploitable via the ITEMLISTVALUES##ITEMID parameter which injects JavaScript into the trace file. The payload is triggered whenever an authe...
CVE-2021-29660
A Cross-Site Request Forgery CSRF vulnerability in en/cfgsetpwd.html in Softing AG OPC Toolbox through 4.10.1.13035 allows attackers to reset the administrative password by inducing the Administrator user to browse a URL controlled by an attacker...
CVE-2021-29660
CVE-2021-29660 concerns a CSRF vulnerability in Softing AG OPC Toolbox (en/cfg_setpwd.html) up to version 4.10.1.13035. An attacker can induce an Administrator to browse a URL under attacker control, enabling a reset of the administrative password. Documents consistently describe the flaw as CSRF...
Softing AG OPC Toolbox 跨站请求伪造漏洞
Softing AG OPC Toolbox is an application from Softing Germany.OPC Toolbox is a series of high-end toolboxes for quick and easy development of OPC clients and servers for Windows, Windows CE, Linux and more. Softing AG OPC Toolbox through 4.10.1.13035 A cross-site request forgery vulnerability can...
Softing AG OPC Toolbox 跨站脚本漏洞
Softing AG OPC Toolbox is an application from Softing, Germany.OPC Toolbox is a series of high-end toolboxes for quick and easy development of OPC clients and servers for Windows, Windows CE, Linux and many more platforms. Softing AG OPC Toolbox through 4.10.1.13035 A cross-site scripting...
Softing OPC Toolbox Detection (Windows SMB Login)
SMB login-based detection of Softing OPC Toolbox. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...