Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-5425

Malware in sbrugna...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References4
Openbugbounty
Openbugbounty
added 2023/07/15 11:44 a.m.19 views

collection.thewestmoreland.org Cross Site Scripting vulnerability OBB-3517178

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/06/28 4:27 p.m.11 views

apps.co.westmoreland.pa.us XSS vulnerability

Vulnerable URL: http://apps.co.westmoreland.pa.us/prison/PrisonInmates/PRISONINMATES.ASP?unit=%22%3E%3C/script%3E%3Csvg/onload=;prompt/OPENBUGBOUNTY/;%3Eh Details: Description| Value ---|--- Patched:| No Latest check for patch:| 21.09.2017 Vulnerability type:| XSS Vulnerability status:| Publicly...

6.3AI score
Exploits0
NVD
NVD
added 2014/09/09 1:55 a.m.11 views

CVE-2014-5538

The Westmoreland Water FCU aka air.com.creditunionhomebanking.mb115 application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
CVE
CVE
added 2014/09/09 1:0 a.m.37 views

CVE-2014-5538

CVE-2014-5538 affects the Westmoreland Water FCU Android app (1.2.0) and is due to the app not verifying X.509 certificates from SSL servers, allowing MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. No patch or remediation details are provided in the co...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/09/09 1:0 a.m.20 views

CVE-2014-5538

The Westmoreland Water FCU aka air.com.creditunionhomebanking.mb115 application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00266EPSS
Exploits0References3
Rows per page
Query Builder