4 matches found
EUVD-2021-8762
Malicious code in bioql PyPI...
CVE-2021-21489
SAP NetWeaver Enterprise Portal versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user related data, resulting in Stored Cross-Site Scripting XSS vulnerability. This would allow an attacker with administrative privileges to store a malicious script on the portal. T...
The vulnerability of Safety Manager and microprogrammed logic controllers from Honeywell, such as Honeywell Experion PKS, arises from the use of rigidly encoded user data. This allows unauthorized individuals to gain access to the protected information.
The vulnerability of Safety Manager and microprogrammed logic controllers from Honeywell Experion PKS lies in the use of strictly encrypted user data. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to protected information...
PYSEC-2021-78
Plone CMS until version 5.2.4 has a stored Cross-Site Scripting XSS vulnerability in the user fullname property and the file upload functionality. The user's input data is not properly encoded when being echoed back to the user. This data can be interpreted as executable code by the browser and...