15 matches found
EUVD-2020-14759
Malware in sbrugna...
CVE-2020-21993
In WEMS Limited Enterprise Manager 2.58, input passed to the GET parameter 'email' is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML code in a user's browser session in context of an affected site...
CVE-2020-21993
In WEMS Limited Enterprise Manager 2.58, input passed to the GET parameter 'email' is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML code in a user's browser session in context of an affected site...
Design/Logic Flaw
In WEMS Limited Enterprise Manager 2.58, input passed to the GET parameter 'email' is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML code in a user's browser session in context of an affected site...
CVE-2020-21993
In WEMS Limited Enterprise Manager 2.58, input passed to the GET parameter 'email' is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML code in a user's browser session in context of an affected site...
CVE-2020-21993
CVE-2020-21993 is a reflected cross-site scripting vulnerability in WEMS Limited Enterprise Manager 2.58. It arises from the GET parameter email not being properly sanitized before being echoed back to the user, enabling arbitrary HTML to execute in a victim’s browser in the context of the affect...
packetstormsecurity WEMS Enterprise Manager 跨站脚本漏洞
packetstormsecurity WEMS Enterprise Manager is a packetstormsecurity open source application. A centralized management and monitoring system for many WEMS-equipped sites. A cross-site scripting vulnerability exists in packetstormsecurity WEMS Enterprise Manager 2.58, which arises from input passe...
WEMS BEMS Authentication Bypass
An authentication bypass vulnerability exists in WEMS BEMS. Successful exploitation of this vulnerability would allow remote attackers to gain unauthorized access into the affected system...
WEMS BEMS 21.3.1 - Undocumented Backdoor Account Vulnerability
Exploit for hardware platform in category web applications Exploit: WEMS BEMS 21.3.1 - Undocumented Backdoor Account Author: LiquidWorm Vendor: WEMS Limited Product web page: https://www.wems.co.uk Advisory ID: ZSL-2019-5552 Advisory URL:...
WEMS BEMS 21.3.1 Undocumented Backdoor Account
WEMS BEMS 21.3.1 Undocumented Backdoor Account Vendor: WEMS Limited Product web page: https://www.wems.co.uk Affected version: Web: 21.3.1 Web: 20.0beta Web: 19.5 Web: 18.4 Firmware: 1.26.6 OS: 5.3 Firmware: 1.23.7 OS: 5.0 Firmware: 1.21.4 OS: 4.1a-usb Firmware: 1.18.0.3 OS: i686-1.1 Platform:...
WEMS BEMS 21.3.1 - Undocumented Backdoor Account
WEMS BEMS 21.3.1 - Undocumented Backdoor Account Exploit: WEMS BEMS 21.3.1 - Undocumented Backdoor Account Date: 2019-12-30 Author: LiquidWorm Vendor: WEMS Limited Product web page: https://www.wems.co.uk Advisory ID: ZSL-2019-5552 Advisory URL:...
WEMS BEMS 21.3.1 - Undocumented Backdoor Account
Exploit: WEMS BEMS 21.3.1 - Undocumented Backdoor Account Date: 2019-12-30 Author: LiquidWorm Vendor: WEMS Limited Product web page: https://www.wems.co.uk Advisory ID: ZSL-2019-5552 Advisory URL: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5552.php WEMS BEMS 21.3.1 Undocumented Backdo...
WEMS Enterprise Manager 2.58 Cross Site Scripting
WEMS Enterprise Manager 2.58 email Reflected XSS Vendor: WEMS Limited Product web page: https://www.wems.co.uk Affected version: 2.58.8903 2.55.8806 2.55.8782 2.19.7959 Summary: WEMS Enterprise Manager is a centralised management and monitoring system for many WEMS equipped sites. It retrieves an...
WEMS BEMS 21.3.1 Undocumented Backdoor Account
Summary We WEMS offer the world's first fully wireless energy management system. Our solution enables your organization to take control of its energy costs, by monitoring lighting, heating and air conditioning equipment to identify wastage across multiple sites and start saving money instantly...
WEMS Enterprise Manager 2.58 (email) Reflected XSS
Summary WEMS Enterprise Manager is a centralised management and monitoring system for many WEMS equipped sites. It retrieves and stores data to enable energy analysis at an enterprise wide level. It is designed to give global visibility of the key areas that affect a buildings' environmental and...