Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.5 views

CVE-2026-3955

A security vulnerability has been detected in elecV2P up to 3.8.3. Affected by this issue is the function runJSFile of the file source-code/elecV2P-master/webser/wbjs.js of the component jsfile Endpoint. Such manipulation leads to code injection. The attack may be launched remotely. The exploit h...

6.5CVSS6.2AI score0.00228EPSS
Exploits0References1
NVD
NVD
added 2026/03/11 9:16 p.m.5 views

CVE-2026-3955

A security vulnerability has been detected in elecV2P up to 3.8.3. Affected by this issue is the function runJSFile of the file source-code/elecV2P-master/webser/wbjs.js of the component jsfile Endpoint. Such manipulation leads to code injection. The attack may be launched remotely. The exploit h...

6.5CVSS0.00228EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/11 8:32 p.m.30 views

CVE-2026-3955 elecV2P jsfile Endpoint wbjs.js runJSFile code injection

A security vulnerability has been detected in elecV2P up to 3.8.3. Affected by this issue is the function runJSFile of the file source-code/elecV2P-master/webser/wbjs.js of the component jsfile Endpoint. Such manipulation leads to code injection. The attack may be launched remotely. The exploit h...

6.5CVSS0.00228EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.6 views

PT-2026-24842

A security vulnerability has been detected in elecV2P up to 3.8.3. Affected by this issue is the function runJSFile of the file source-code/elecV2P-master/webser/wbjs.js of the component jsfile Endpoint. Such manipulation leads to code injection. The attack may be launched remotely. The exploit h...

6.5CVSS5.5AI score0.00228EPSS
Exploits0References7
NVD
NVD
added 2014/09/23 10:55 a.m.13 views

CVE-2014-6683

The Open Electrical Webser aka com.wOpenElectricalWeb application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00271EPSS
Exploits0References3
Prion
Prion
added 2014/09/23 10:55 a.m.12 views

Design/Logic Flaw

The Open Electrical Webser aka com.wOpenElectricalWeb application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00271EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/09/23 10:0 a.m.17 views

CVE-2014-6683

The Open Electrical Webser aka com.wOpenElectricalWeb application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00271EPSS
Exploits0References3
CVE
CVE
added 2014/09/23 10:0 a.m.38 views

CVE-2014-6683

The CVE-2014-6683 entry concerns the Open Electrical Webser (com.wOpenElectricalWeb) Android app version 0.1, which fails to verify X.509 certificates from SSL servers. Root cause: missing certificate verification in the app’s TLS handling. Consequence: MITM attackers could spoof servers and capt...

5.4CVSS6AI score0.00271EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder