513 matches found
CVE-2025-8706 Wanzhou WOES Intelligent Optimization Energy Saving System Energy Overview Module CreateFunctionLog sql injection
A vulnerability has been found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /CommonSolution/CreateFunctionLog of the component Energy Overview Module. The manipulation of the...
CVE-2025-8706 Wanzhou WOES Intelligent Optimization Energy Saving System Energy Overview Module CreateFunctionLog sql injection
A vulnerability has been found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /CommonSolution/CreateFunctionLog of the component Energy Overview Module. The manipulation of the...
CVE-2025-8705
A vulnerability, which was classified as critical, was found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. Affected is an unknown function of the file /WEASHomePage/GetTargetConfig of the component Energy Overview Module. The manipulation of the argument BPProID leads to sql...
CVE-2025-8705 Wanzhou WOES Intelligent Optimization Energy Saving System Energy Overview Module GetTargetConfig sql injection
A vulnerability, which was classified as critical, was found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. Affected is an unknown function of the file /WEASHomePage/GetTargetConfig of the component Energy Overview Module. The manipulation of the argument BPProID leads to sql...
CVE-2025-8705 Wanzhou WOES Intelligent Optimization Energy Saving System Energy Overview Module GetTargetConfig sql injection
A vulnerability, which was classified as critical, was found in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. Affected is an unknown function of the file /WEASHomePage/GetTargetConfig of the component Energy Overview Module. The manipulation of the argument BPProID leads to sql...
CVE-2025-8705
The CVE-2025-8705 affects Wanzhou WOES Intelligent Optimization Energy Saving System 1.0, specifically the Energy Overview Module’s API at /WEAS_HomePage/GetTargetConfig. The vulnerability arises from unsafely handling the BP_ProID parameter, enabling SQL injection that can be executed remotely. ...
MINI-R87V-G2H3-PG64
Bulletin has no description...
CVE-2025-53543 Kestra allows Stored XSS before 0.22
Kestra is an event-driven orchestration platform. The error message in execution "Overview" tab is vulnerable to stored XSS due to improper handling of HTTP response received. This vulnerability is fixed in 0.22.0...
kestra 跨站脚本漏洞
kestra is a workflow automation platform from Kestra open source. A cross-site scripting vulnerability exists in versions prior to kestra 0.22.0 that stems from improper handling of an error message in the Execution Overview tab and could lead to a stored cross-site scripting attack...
GHSA-HWPG-X5HW-VPV9 ChangeDetection.io XSS in watch overview
Impact XSS - Errors in filters from website page change detection watches were not being filtered. Patches 0.50.4...
A Survey of Foundation Models for IoT: Taxonomy and Criteria-Based Analysis
Foundation models have gained growing interest in the IoT domain due to their reduced reliance on labeled data and strong generalizability across tasks, which address key limitations of traditional machine learning approaches. However, most existing foundation model based methods are developed fo...
CGA-F2CV-9C8W-HFJC
Bulletin has no description...
MAL-2025-5056 Malicious code in requests-json-overview (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8009e6f4e6416f898819130b2befd315297272af6764740f522acfd719576a0c Any computer that has this package installed or running should be considered...
Photoshop for Beginners – Overview of Top Skills and How to Hone Them
What comes to your mind when you think of Photoshop? A tool for editing and retouching photos -…...
BIT-MOODLE-2024-34000 moodle: stored XSS in lesson overview report via user ID number
ID numbers displayed in the lesson overview report required additional sanitizing to prevent a stored XSS risk...
The vulnerability of the GetOverview method in the software for managing and monitoring remote devices in telemetry and telemechanics systems, as well as in the TeleControl Server Basic, allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the GetOverview method in the software for managing and monitoring remote devices in telemetry and telemechanics systems, such as the TeleControl Server Basic, is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a...
Malicious code in fc-card-overview (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 52e92e70129fc8f9de1f5052d516f6fd499edcfc902e3f08c68db8c3ea792448 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2022-45017
A cross-site scripting XSS vulnerability in the Overview Page settings module of WBCE CMS v1.5.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Post Loop field...
CVE-2021-39413
Multiple Cross Site Scripting XSS vulnerabilities exits in SEO Panel v4.8.0 via the 1 totime parameter in a backlinks.php, b analytics.php, c log.php, d overview.php, e pagespeed.php, f rank.php, g review.php, h saturationchecker.php, i socialmedia.php, and j reports.php; the 2 fromtime parameter...
CVE-2012-2975
Cross-site scripting XSS vulnerability in the traffic overview page on the F5 ASM appliance 10.0.0 through 11.2.0 HF2 allows remote attackers to inject arbitrary web script or HTML via crafted requests that are later listed on a summary page...