Lucene search
K

16 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:35 a.m.7 views

CVE-2024-34577

Cross-site scripting vulnerability exists in WRC-X3000GS2-B, WRC-X3000GS2-W, WRC-X3000GS2A-B and WRC-X3000GST2-B due to improper processing of input values in easysetup.cgi. If a user views a malicious web page while logged in to the product, an arbitrary script may be executed on the user's web...

6.1CVSS7.3AI score0.00239EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-34879

Malicious code in bioql PyPI...

6.1CVSS8.7AI score0.00239EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-48130

Malicious code in bioql PyPI...

8CVSS7.1AI score0.00999EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:25 a.m.8 views

CVE-2023-43752

OS command injection vulnerability in WRC-X3000GS2-W v1.05 and earlier, WRC-X3000GS2-B v1.05 and earlier, and WRC-X3000GS2A-B v1.05 and earlier allows a network-adjacent authenticated user to execute an arbitrary OS command by sending a specially crafted request...

8CVSS7.6AI score0.00999EPSS
Exploits0
NVD
NVD
added 2024/08/30 7:15 a.m.30 views

CVE-2024-34577

Cross-site scripting vulnerability exists in WRC-X3000GS2-B, WRC-X3000GS2-W, WRC-X3000GS2A-B and WRC-X3000GST2-B due to improper processing of input values in easysetup.cgi. If a user views a malicious web page while logged in to the product, an arbitrary script may be executed on the user's web...

6.1CVSS0.00239EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/30 6:29 a.m.20 views

CVE-2024-34577

Cross-site scripting vulnerability exists in WRC-X3000GS2-B, WRC-X3000GS2-W, WRC-X3000GS2A-B and WRC-X3000GST2-B due to improper processing of input values in easysetup.cgi. If a user views a malicious web page while logged in to the product, an arbitrary script may be executed on the user's web...

7.3AI score0.00239EPSS
Exploits0References2
CVE
CVE
added 2024/08/30 6:29 a.m.55 views

CVE-2024-34577

CVE-2024-34577 is an XSS vulnerability in ELECOM WRC-X3000GS2-B/W/A-B caused by improper input handling in easysetup.cgi. Affected devices (WRC-X3000GS2-B/W/A-B) are vulnerable when a logged-in user views a malicious page, potentially allowing arbitrary script execution in the user’s browser. Con...

6.1CVSS7.3AI score0.00239EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/08/30 6:29 a.m.26 views

CVE-2024-34577

Cross-site scripting vulnerability exists in WRC-X3000GS2-B, WRC-X3000GS2-W, WRC-X3000GS2A-B and WRC-X3000GST2-B due to improper processing of input values in easysetup.cgi. If a user views a malicious web page while logged in to the product, an arbitrary script may be executed on the user's web...

0.00239EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/29 12:0 a.m.8 views

PT-2024-25992 · Unknown · Wrc-X3000Gs2A-B +1

Name of the Vulnerable Software and Affected Versions: WRC-X3000GS2-B WRC-X3000GS2-W WRC-X3000GS2A-B Description: A cross-site scripting vulnerability exists due to improper processing of input values in easysetup.cgi. If a user views a malicious web page while logged in to the product, an...

6.1CVSS6.6AI score0.00239EPSS
Exploits0References8
CNNVD
CNNVD
added 2024/08/27 12:0 a.m.4 views

ELECOM多款产品 跨站脚本漏洞

ELECOM WRC-X3000GS2-W and others are products of ELECOM Corporation.ELECOM WRC-X3000GS2-W is a wireless router.ELECOM WRC-X3000GS2-B is a gigabit router.ELECOM WRC-X3000GS2A-B is a gigabit router. A cross-site scripting vulnerability exists in various ELECOM products, which originates from the...

6.1CVSS6.4AI score0.00245EPSS
Exploits0References5
NVD
NVD
added 2023/11/16 7:15 a.m.23 views

CVE-2023-43752

OS command injection vulnerability in WRC-X3000GS2-W v1.05 and earlier, WRC-X3000GS2-B v1.05 and earlier, and WRC-X3000GS2A-B v1.05 and earlier allows a network-adjacent authenticated user to execute an arbitrary OS command by sending a specially crafted request...

8CVSS0.00999EPSS
Exploits0References2
OSV
OSV
added 2023/11/16 7:15 a.m.4 views

CVE-2023-43752

OS command injection vulnerability in WRC-X3000GS2-W v1.05 and earlier, WRC-X3000GS2-B v1.05 and earlier, and WRC-X3000GS2A-B v1.05 and earlier allows a network-adjacent authenticated user to execute an arbitrary OS command by sending a specially crafted request...

8CVSS6AI score0.00999EPSS
Exploits0References2
Prion
Prion
added 2023/11/16 7:15 a.m.13 views

Command injection

OS command injection vulnerability in WRC-X3000GS2-W v1.05 and earlier, WRC-X3000GS2-B v1.05 and earlier, and WRC-X3000GS2A-B v1.05 and earlier allows a network-adjacent authenticated user to execute an arbitrary OS command by sending a specially crafted request...

5.2CVSS7.8AI score0.00999EPSS
Exploits0References2Affected Software3
Cvelist
Cvelist
added 2023/11/16 6:46 a.m.22 views

CVE-2023-43752

OS command injection vulnerability in WRC-X3000GS2-W v1.05 and earlier, WRC-X3000GS2-B v1.05 and earlier, and WRC-X3000GS2A-B v1.05 and earlier allows a network-adjacent authenticated user to execute an arbitrary OS command by sending a specially crafted request...

8.2AI score0.00999EPSS
Exploits0References2
CVE
CVE
added 2023/11/16 6:46 a.m.38 views

CVE-2023-43752

CVE-2023-43752 affects ELECOM/related WRC-X3000GS2 devices: W2-W, W2-B, and W2A-B (all v1.05 and earlier). A network‑adjacent authenticated user can execute arbitrary OS commands by sending a specially crafted request, per the CVE description. The reported impact is high (C/H/I/A). Public details...

8CVSS7.9AI score0.00999EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/11/14 12:0 a.m.3 views

ELECOM WRC-X3000GS2-W Security Vulnerability

The ELECOM WRC-X3000GS2-W is a wireless router from ELECOM. A security vulnerability exists in the ELECOM WRC-X3000GS2-W that originates from a logged-in user being able to execute arbitrary operating system commands by sending a specially crafted request...

8CVSS7.4AI score0.00999EPSS
Exploits0References4
Rows per page
Query Builder