25 matches found
EUVD-2025-5502
Malicious code in bioql PyPI...
CVE-2025-22493
Secure flag not set and SameSIte was set to Lax in the Foreseer Reporting Software FRS. Absence of this secure flag could lead into the session cookie being transmitted over unencrypted HTTP connections. This security issue has been resolved in the latest version of FRS v1.5.100...
CVE-2025-22493
Secure flag not set and SameSIte was set to Lax in the Foreseer Reporting Software FRS. Absence of this secure flag could lead into the session cookie being transmitted over unencrypted HTTP connections. This security issue has been resolved in the latest version of FRS v1.5.100...
CVE-2025-22493 Improper cookie attributes in Foreseer Reporting Software (FRS)
Secure flag not set and SameSIte was set to Lax in the Foreseer Reporting Software FRS. Absence of this secure flag could lead into the session cookie being transmitted over unencrypted HTTP connections. This security issue has been resolved in the latest version of FRS v1.5.100...
CVE-2025-22493 Improper cookie attributes in Foreseer Reporting Software (FRS)
Secure flag not set and SameSIte was set to Lax in the Foreseer Reporting Software FRS. Absence of this secure flag could lead into the session cookie being transmitted over unencrypted HTTP connections. This security issue has been resolved in the latest version of FRS v1.5.100...
CVE-2025-22493
CVE-2025-22493 affects Foreseer Reporting Software (FRS). The issue stems from the secure flag not being set and SameSite configured to Lax, allowing session cookies to be transmitted over unencrypted HTTP connections. The Red Hat and NVD/NIST records confirm the vulnerability description and ind...
Eaton Foreseer Reporting Software 安全漏洞
Eaton Foreseer Reporting Software is a report generation tool for electrical power monitoring systems EPMS from Eaton Corporation that collects power data in real-time and generates analytical reports to help organizations optimize energy management and equipment performance. A security...
CVE-2025-22492
The connection string visible to users with access to FRSCore database on Foreseer Reporting Software FRS VM, this string can be used for gaining administrative access to the 4crXref database. This vulnerability has been resolved in the latest version 1.5.100 of FRS...
CVE-2025-22491
The user input was not sanitized on Reporting Hierarchy Management page of Foreseer Reporting Software FRS application which could lead into execution of arbitrary JavaScript in a browser context for all the interacting users. This security issue has been patched in the latest version 1.5.100 of...
CVE-2025-22491
The user input was not sanitized on Reporting Hierarchy Management page of Foreseer Reporting Software FRS application which could lead into execution of arbitrary JavaScript in a browser context for all the interacting users. This security issue has been patched in the latest version 1.5.100 of...
CVE-2025-22492
The connection string visible to users with access to FRSCore database on Foreseer Reporting Software FRS VM, this string can be used for gaining administrative access to the 4crXref database. This vulnerability has been resolved in the latest version 1.5.100 of FRS...
CVE-2025-22492 Insecure storage of connection strings in FRS
The connection string visible to users with access to FRSCore database on Foreseer Reporting Software FRS VM, this string can be used for gaining administrative access to the 4crXref database. This vulnerability has been resolved in the latest version 1.5.100 of FRS...
CVE-2025-22492 Insecure storage of connection strings in FRS
The connection string visible to users with access to FRSCore database on Foreseer Reporting Software FRS VM, this string can be used for gaining administrative access to the 4crXref database. This vulnerability has been resolved in the latest version 1.5.100 of FRS...
CVE-2025-22492
CVE-2025-22492 affects Eaton Foreseer Reporting Software (FRS) – specifically the FRSCore database connection string exposed to users with access to the FRS VM. The root issue is exposure of the FRSCore database connection string, which can enable gain of administrative access to the 4crXref data...
CVE-2025-22491 Improper Input Validation in Foreseer Reporting Software (FRS)
The user input was not sanitized on Reporting Hierarchy Management page of Foreseer Reporting Software FRS application which could lead into execution of arbitrary JavaScript in a browser context for all the interacting users. This security issue has been patched in the latest version 1.5.100 of...
CVE-2025-22491 Improper Input Validation in Foreseer Reporting Software (FRS)
The user input was not sanitized on Reporting Hierarchy Management page of Foreseer Reporting Software FRS application which could lead into execution of arbitrary JavaScript in a browser context for all the interacting users. This security issue has been patched in the latest version 1.5.100 of...
CVE-2025-22491
CVE-2025-22491 affects Foreseer Reporting Software (FRS) - a vulnerability in the Reporting Hierarchy Management page where unsanitized user input allows arbitrary JavaScript execution in a browser context for all interacting users. Root cause: un sanitised input processing on that page. Impact: ...
Eaton Foreseer Reporting Software 安全漏洞
Eaton Foreseer Reporting Software is a report generation tool for electrical power monitoring systems EPMS from Eaton Corporation that collects power data in real-time and generates analytical reports to help organizations optimize energy management and equipment performance. A security...
PT-2025-9083 · Unknown · Foreseer Reporting
Name of the Vulnerable Software and Affected Versions: Foreseer Reporting Software FRS versions prior to 1.5.100 Description: The issue allows users with access to the FRSCore database on the Foreseer Reporting Software FRS VM to view the connection string, which can be used to gain administrativ...
PT-2025-9082 · Unknown · Foreseer Reporting
Name of the Vulnerable Software and Affected Versions: Foreseer Reporting Software FRS versions prior to 1.5.100 Description: The issue arises from unsanitized user input on the Reporting Hierarchy Management page of the FRS application, potentially leading to the execution of arbitrary JavaScrip...