Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-12768

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0045EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:41 a.m.7 views

CVE-2023-0750

Yellobrik PEC-1864 implements authentication checks via javascript in the frontend interface. When the device can be accessed over the network an attacker could bypass authentication. This would allow an attacker to : - Change the password, resulting in a DOS of the users - Change the streaming...

9.8CVSS9.1AI score0.0045EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2024/01/26 9:42 p.m.10 views

postaelettronicacertificata-pec.it Improper Access Control vulnerability OBB-3843900

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/05 11:49 a.m.34 views

Hackers Targeting Italian Corporate Banking Clients with New Web-Inject Toolkit DrIBAN

Italian corporate banking clients are the target of an ongoing financial fraud campaign that has been leveraging a new web-inject toolkit called drIBAN since at least 2019. "The main goal of drIBAN fraud operations is to infect Windows workstations inside corporate environments trying to alter...

6.4AI score
Exploits0
NVD
NVD
added 2023/04/06 2:15 p.m.17 views

CVE-2023-0750

Yellobrik PEC-1864 implements authentication checks via javascript in the frontend interface. When the device can be accessed over the network an attacker could bypass authentication. This would allow an attacker to : - Change the password, resulting in a DOS of the users - Change the streaming...

9.8CVSS9.6AI score0.0045EPSS
Exploits0References1
Prion
Prion
added 2023/04/06 2:15 p.m.16 views

Authentication flaw

Yellobrik PEC-1864 implements authentication checks via javascript in the frontend interface. When the device can be accessed over the network an attacker could bypass authentication. This would allow an attacker to : - Change the password, resulting in a DOS of the users - Change the streaming...

7.5CVSS9.4AI score0.0045EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/06 1:12 p.m.25 views

CVE-2023-0750 Yellowbrik PEC-1864 authentication bypass

Yellobrik PEC-1864 implements authentication checks via javascript in the frontend interface. When the device can be accessed over the network an attacker could bypass authentication. This would allow an attacker to : - Change the password, resulting in a DOS of the users - Change the streaming...

9.8CVSS9.7AI score0.0045EPSS
Exploits0References1
CVE
CVE
added 2023/04/06 1:12 p.m.34 views

CVE-2023-0750

CVE-2023-0750 affects the Yellobrik PEC-1864 front-end authentication. The vulnerability stems from authentication checks implemented via JavaScript in the device’s frontend, which can be bypassed when the device is reachable over the network. Exploitation could allow an attacker to: change the p...

9.8CVSS9.6AI score0.0045EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/06 1:12 p.m.7 views

CVE-2023-0750 Yellowbrik PEC-1864 authentication bypass

Yellobrik PEC-1864 implements authentication checks via javascript in the frontend interface. When the device can be accessed over the network an attacker could bypass authentication. This would allow an attacker to : - Change the password, resulting in a DOS of the users - Change the streaming...

9.8CVSS9.6AI score0.0045EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/04/06 12:0 a.m.13 views

LYNX Technik Yellobrik PEC-1864 安全漏洞

The LYNX Technik Yellobrik PEC-1864 is a versatile and compact SDI/HDMI H.264 streamer and recorder from LYNX Technik. A security vulnerability exists in the LYNX Technik Yellobrik PEC-1864 version, which stems from an authentication check implemented via javascript in the front-end interface,...

9.8CVSS8.4AI score0.0045EPSS
Exploits0References2
Openbugbounty
Openbugbounty
added 2022/11/26 4:50 a.m.14 views

pec-oswiecim.com.pl Cross Site Scripting vulnerability OBB-3072100

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
OSV
OSV
added 2022/09/17 12:49 a.m.12 views

GSD-2022-1006031 i2c: cadence: Support PEC for SMBus block read

i2c: cadence: Support PEC for SMBus block read This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/09/17 12:34 a.m.10 views

GSD-2022-1005872 i2c: cadence: Support PEC for SMBus block read

i2c: cadence: Support PEC for SMBus block read This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.137 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/09/17 12:13 a.m.8 views

GSD-2022-1005622 i2c: cadence: Support PEC for SMBus block read

i2c: cadence: Support PEC for SMBus block read This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/09/16 11:45 p.m.11 views

GSD-2022-1005279 i2c: cadence: Support PEC for SMBus block read

i2c: cadence: Support PEC for SMBus block read This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...

7.2AI score
Exploits0
seebug.org
seebug.org
added 2007/07/04 12:0 a.m.21 views

phpEventCalendar <= 0.2.3 (eventdisplay.php) SQL Injection Exploit

No description provided by source. !/usr/bin/perl Vendor url: www.ikemcg.com require LWP::UserAgent; print " phpEventCalendar = v0.2.3 SQL Injection Exploit By Iron - ironwarez.info Thanks to Silentz for the help : Greets to everyone at RootShell Security Group & dHack Example target url:...

7.1AI score
Exploits0
Rows per page
Query Builder