20 matches found
CVE-2020-7235
UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cB3?ta= profile title...
CVE-2020-7236
UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cw2?td= Site Name field of the Site Setup section...
EUVD-2020-28364
Malware in sbrugna...
EUVD-2020-28363
Malware in sbrugna...
UHP UHP-100 cross-site scripting vulnerability (CNVD-2020-07243)
The UHP-100 is a high-performance router designed for large-scale deployment in broadband VSAT networks. A cross-site scripting vulnerability exists in UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3. The vulnerability stems from a lack of proper validation of client data by the WEB application. An attacker...
CVE-2020-7236
UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cw2?td= Site Name field of the Site Setup section...
CVE-2020-7235
UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cB3?ta= profile title...
CVE-2020-7235
UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cB3?ta= profile title...
CVE-2020-7236
UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cw2?td= Site Name field of the Site Setup section...
Stack overflow
UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cw2?td= Site Name field of the Site Setup section...
Design/Logic Flaw
UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cB3?ta= profile title...
CVE-2020-7235
UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cB3?ta= profile title...
CVE-2020-7235
CVE-2020-7235 involves UHP UHP-100 devices (versions 3.4.1.15, 3.4.2.4, 3.4.3) where a cross-site scripting (XSS) vulnerability exists due to improper validation of client data by the WEB application. Exploitation details, including vector or in-the-wild status, are not provided in the supplied d...
CVE-2020-7236
UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cw2?td= Site Name field of the Site Setup section...
CVE-2020-7236
The CVE-2020-7236 issue affects UHP UHP-100 devices with firmware versions 3.4.1.15, 3.4.2.4, and 3.4.3, where a Cross-Site Scripting (XSS) vulnerability exists in the WEB application. The root cause is insufficient validation of client-side data in the Site Setup section’s Site Name field (cw2?t...
UHP UHP-100 Cross-Site Scripting Vulnerability
The UHP-100 is a high-performance router designed for large-scale deployment in broadband VSAT networks. A cross-site scripting vulnerability exists in the UHP UHP-100 versions 3.4.1.15, 3.4.2.4, and 3.4.3. The vulnerability stems from the lack of proper validation of client-side data by the WEB...
Small satellite terminals (VSAT) are vulnerable to Cyber attack
+are+vulnerable+to+Cyber+attack.gif The Military Units that rely on very small aperture terminals VSATs for satellite communications in remote areas are vulnerable to cyber attack. Researchers from cyber intelligence company IntelCrawler recently identified nearly 3 million VSATs, many of them in...
CVE-2006-3995
Multiple PHP remote file inclusion vulnerabilities in 1 uhpconfig.php, and possibly 2 footer.php, 3 functions.php, 4 install.uhp.php, 5 toolbar.uhp.html.php, 6 uhp.class.php, and 7 uninstall.uhp.php, in the UHP User Home Pages 0.5 component aka comuhp for Mambo or Joomla! allow remote attackers t...
CVE-2006-3995
Multiple PHP remote file inclusion vulnerabilities in 1 uhpconfig.php, and possibly 2 footer.php, 3 functions.php, 4 install.uhp.php, 5 toolbar.uhp.html.php, 6 uhp.class.php, and 7 uninstall.uhp.php, in the UHP User Home Pages 0.5 component aka comuhp for Mambo or Joomla! allow remote attackers t...
CVE-2006-3995
CVE-2006-3995 : In the UHP (User Home Pages) 0.5 component (com_uhp) for Mambo/Joomla!, there are multiple PHP remote file inclusion vulnerabilities. The issue allows arbitrary PHP code execution when a attacker supplies a URL in the mosConfig_absolute_path parameter, affecting files such as uhp_...