67 matches found
Cross-site Scripting (XSS)
Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS in the rendertocul function. An attacker can execute arbitrary JavaScript in the context of the rendered page by injecting malicious input into heading text, which is then used unescaped as an anchor ID and labe...
CVE-2026-33283
CVE-2026-33283 – Ella Core panics on malformed UL NAS Transport NAS messages without a Request Type. Ella Core is a 5G core for private networks. The vulnerability affects versions prior to 1.6.0, where processing malformed UL NAS Transport NAS messages without a Request Type causes the applicati...
CVE-2026-33283 Ella Core panics on malformed ULNASTransport Message without a Request Type
Ella Core is a 5G core designed for private networks. Versions prior to 1.6.0 panic when processing malformed UL NAS Transport NAS messages without a Request Type. An attacker able to send crafted NAS messages to Ella Core can crash the process, causing service disruption for all connected...
CVE-2026-33283 Ella Core panics on malformed ULNASTransport Message without a Request Type
Ella Core is a 5G core designed for private networks. Versions prior to 1.6.0 panic when processing malformed UL NAS Transport NAS messages without a Request Type. An attacker able to send crafted NAS messages to Ella Core can crash the process, causing service disruption for all connected...
Honeywell多款产品 访问控制错误漏洞
Honeywell I-HIB2PI-UL 2MP, etc., are products of the American company Honeywell. The Honeywell I-HIB2PI-UL 2MP is an infrared dome camera. The Honeywell SMB NDAA MVO-3 is an infrared gimbal camera. The Honeywell PTZ WDR 2MP 32M is a series of night vision cameras. Several Honeywell products have...
CVE-2025-4676
Incorrect Implementation of Authentication Algorithm vulnerability in ABB WebPro SNMP Card PowerValue, ABB WebPro SNMP Card PowerValue UL.This issue affects WebPro SNMP Card PowerValue: through 1.1.8.K; WebPro SNMP Card PowerValue UL: through 1.1.8.K...
CVE-2025-4676
Incorrect Implementation of Authentication Algorithm vulnerability in ABB WebPro SNMP Card PowerValue, ABB WebPro SNMP Card PowerValue UL.This issue affects WebPro SNMP Card PowerValue: through 1.1.8.K; WebPro SNMP Card PowerValue UL: through 1.1.8.K...
CVE-2025-4676
CVE-2025-4676 affects ABB WebPro SNMP Card PowerValue and WebPro SNMP Card PowerValue UL up to version 1.1.8.K. Root cause is an incorrect implementation of the authentication algorithm. CVSS metrics indicate HIGH impact with adjacent attack vector, low complexity, no privileges required, user in...
CVE-2025-4676 Authentication bypass by brute forcing Authentication Headers
Incorrect Implementation of Authentication Algorithm vulnerability in ABB WebPro SNMP Card PowerValue, ABB WebPro SNMP Card PowerValue UL.This issue affects WebPro SNMP Card PowerValue: through 1.1.8.K; WebPro SNMP Card PowerValue UL: through 1.1.8.K...
CVE-2025-4675 Improper implementation of Modbus protocol leading to DOS attack
Improper Check for Unusual or Exceptional Conditions vulnerability in ABB WebPro SNMP Card PowerValue, ABB WebPro SNMP Card PowerValue UL.This issue affects WebPro SNMP Card PowerValue: through 1.1.8.K; WebPro SNMP Card PowerValue UL: through 1.1.8.K...
ABB WebPro SNMP Card PowerValue和ABB WebPro SNMP Card PowerValue UL 代码问题漏洞
ABB WebPro SNMP Card PowerValue and ABB WebPro SNMP Card PowerValue UL are both remote web management systems from ABB Switzerland. A code issue vulnerability exists in ABB WebPro SNMP Card PowerValue and ABB WebPro SNMP Card PowerValue UL versions 1.1.8.K and earlier, which stems from improper...
PT-2026-1808
Name of the Vulnerable Software and Affected Versions ABB WebPro SNMP Card PowerValue versions through 1.1.8.K ABB WebPro SNMP Card PowerValue UL versions through 1.1.8.K Description An improper check for unusual or exceptional conditions exists in ABB WebPro SNMP Card PowerValue and ABB WebPro...
ABB WebPro SNMP Card PowerValue和ABB WebPro SNMP Card PowerValue UL 代码问题漏洞
ABB WebPro SNMP Card PowerValue and ABB WebPro SNMP Card PowerValue UL are both remote web management systems from ABB Switzerland. A code issue vulnerability exists in ABB WebPro SNMP Card PowerValue and ABB WebPro SNMP Card PowerValue UL 1.1.8.K and prior versions, which stems from an inadequat...
Malicious Package
Overview ul-inline is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
Malicious code in ul-inline (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 15d6bb031b2303d28ce8296da9c8f534d9576044e57faffcf455a70b24aa6b9c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
EUVD-2025-36817
Malicious code in ul-inline npm...
MAL-2025-49063 Malicious code in ul-inline (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 15d6bb031b2303d28ce8296da9c8f534d9576044e57faffcf455a70b24aa6b9c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
EUVD-2025-19949
Malicious code in bioql PyPI...
EUVD-2025-14720
Malicious code in bioql PyPI...
EUVD-2025-14719
Malicious code in bioql PyPI...