CVE-2026-25786

Affected devices do not properly validate and sanitize PLC/station name rendered on the "communication" parameters page of the web interface. This could allow an authenticated attacker who is authorized to download a TIA project into the product, to inject malicious scripts into the page. If a...

CVE-2026-25786

CVE-2026-25786 affects devices where the web interface’s communication parameters page renders a PLC/station name. The root cause is inadequate validation/sanitization of the name, enabling an authenticated user (who is allowed to download a TIA project) to inject malicious scripts into the page....

CVE-2025-23365

A vulnerability has been identified in TIA Administrator All versions V3.0.6. The affected application allows low-privileged users to trigger installations by overwriting cache files and modifying the downloads path. This would allow an attacker to escalate privilege and exceute arbitrary code...

EUVD-2016-9409

Malware in sbrugna...

EUVD-2016-8807

Malware in sbrugna...

EUVD-2014-8388

Malware in sbrugna...

EUVD-2016-8808

Malware in sbrugna...

EUVD-2013-0681

Malware in sbrugna...

EUVD-2018-3484

Malware in sbrugna...

EUVD-2021-23746

Malware in sbrugna...

EUVD-2019-2629

Malware in sbrugna...

EUVD-2014-8389

Malware in sbrugna...

EUVD-2019-2648

Malware in sbrugna...

EUVD-2020-17928

Malware in sbrugna...

EUVD-2023-50507

Malicious code in bioql PyPI...

EUVD-2023-50505

Malicious code in bioql PyPI...

EUVD-2025-14391

Malicious code in bioql PyPI...

EUVD-2023-42332

Malicious code in bioql PyPI...

EUVD-2022-38741

Malicious code in bioql PyPI...

EUVD-2025-24246

Malicious code in bioql PyPI...