10960 matches found
CVE-2024-53684
A cross-site request forgery csrf vulnerability exists in the WEBVIEW-M functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted HTTP request can lead to unauthorized access. An attacker can stage a malicious webpage to trigger this vulnerability...
CVE-2024-53684
CVE-2024-53684 affects Socomec DIRIS Digiware M-70, specifically the WEBVIEW-M webserver in version 1.6.9. TALOS details a cross-site request forgery (CSRF) where a malicious page can trigger unauthorized access even when a user is authenticated, due to WEBVIEW-M not properly handling requests wi...
EUVD-2024-55107
A cross-site request forgery csrf vulnerability exists in the WEBVIEW-M functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted HTTP request can lead to unauthorized access. An attacker can stage a malicious webpage to trigger this vulnerability...
Socomec DIRIS Digiware M-70 安全漏洞
The Socomec DIRIS Digiware M-70 is a communication gateway device that serves as an access point for the DIRIS Digiware system, which combines 24VDC power and communication functions in a single unit. The Socomec DIRIS Digiware M-70 suffers from a plaintext transmission vulnerability that...
Socomec DIRIS Digiware M-70 安全漏洞
The Socomec DIRIS Digiware M-70 is a communication gateway device that serves as an access point for the DIRIS Digiware system, which combines 24VDC power and communication functions in a single unit. A cross-site request forgery vulnerability exists in the Socomec DIRIS Digiware M-70 that stems...
PT-2025-48472
Name of the Vulnerable Software and Affected Versions Socomec DIRIS Digiware M-70 version 1.6.9 Description A cross-site request forgery issue exists within the WEBVIEW-M functionality. A malicious webpage can be used to trigger this issue by sending a specially crafted HTTP request, potentially...
Socomec DIRIS Digiware M-70 WEBVIEW-M cross-site request forgery (CSRF) vulnerability
Talos Vulnerability Report TALOS-2024-2116 Socomec DIRIS Digiware M-70 WEBVIEW-M cross-site request forgery CSRF vulnerability December 1, 2025 CVE Number CVE-2024-53684 SUMMARY A cross-site request forgery csrf vulnerability exists in the WEBVIEW-M functionality of Socomec DIRIS Digiware M-70...
Socomec DIRIS Digiware M-70 Modbus RTU over TCP factory reset denial of service vulnerability
Talos Vulnerability Report TALOS-2025-2138 Socomec DIRIS Digiware M-70 Modbus RTU over TCP factory reset denial of service vulnerability December 1, 2025 CVE Number CVE-2025-20085 SUMMARY A denial of service vulnerability exists in the Modbus RTU over TCP functionality of Socomec DIRIS Digiware...
Socomec DIRIS Digiware M-70 WEBVIEW-M cleartext transmission vulnerability
Talos Vulnerability Report TALOS-2024-2115 Socomec DIRIS Digiware M-70 WEBVIEW-M cleartext transmission vulnerability December 1, 2025 CVE Number CVE-2024-48894 SUMMARY A cleartext transmission vulnerability exists in the WEBVIEW-M functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially...
[SECURITY] Fedora 42 Update: qt5-qtwebview-5.15.18-1.fc42
Qt WebView provides a way to display web content in a QML application without necessarily including a full web browser stack by using native APIs where it makes sense...
[SECURITY] Fedora 42 Update: qt6-qtwebview-6.9.3-1.fc42
Qt WebView provides a way to display web content in a QML application without necessarily including a full web browser stack by using native APIs where it makes sense...
Malicious code in ttb-design-system-webview (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-48880 Malicious code in ttb-design-system-webview (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2025-11445
A vulnerability was detected in Kilo Code up to 4.86.0. Affected is the function ClineProvider of the file src/core/webview/ClineProvider.ts of the component Prompt Handler. Performing manipulation results in injection. The attack can be initiated remotely. The exploit is now public and may be...
CVE-2025-11445 Kilo Code Prompt ClineProvider.ts ClineProvider injection
A vulnerability was detected in Kilo Code up to 4.86.0. Affected is the function ClineProvider of the file src/core/webview/ClineProvider.ts of the component Prompt Handler. Performing manipulation results in injection. The attack can be initiated remotely. The exploit is now public and may be...
EUVD-2012-3957
Malware in sbrugna...
EUVD-2012-0352
Malware in sbrugna...
EUVD-2012-2621
Malware in sbrugna...
EUVD-2016-5821
Malware in sbrugna...
EUVD-2012-5102
Malware in sbrugna...