EUVD-2018-13131

Malware in sbrugna...

CVE-2018-20576

Orange Livebox 00.96.320S devices allow cgi-bin/autodialing.exe and cgi-bin/phonetest.exe CSRF, leading to arbitrary outbound telephone calls to an attacker-specified telephone number. This is related to Firmware 01.11.2017-11:43:44, Boot v0.70.03, Modem 5.4.1.10.1.1A, Hardware 02, and Arcadyan...

CVE-2018-20577

Orange Livebox 00.96.320S devices allow cgi-bin/restore.exe, cgi-bin/firewallSPI.exe, cgi-bin/setupremotemgmt.exe, cgi-bin/setuppass.exe, and cgi-bin/upgradep.exe CSRF. This is related to Firmware 01.11.2017-11:43:44, Boot v0.70.03, Modem 5.4.1.10.1.1A, Hardware 02, and Arcadyan ARV7519RW22-A-L T...

CVE-2018-20377

Orange Livebox 00.96.320S devices allow remote attackers to discover Wi-Fi credentials via /getgetnetworkconf.cgi on port 8080, leading to full control if the admin password equals the Wi-Fi password or has the default admin value. This is related to Firmware 01.11.2017-11:43:44, Boot v0.70.03,...

CVE-2018-20377

Orange Livebox 00.96.320S devices allow remote attackers to discover Wi-Fi credentials via /getgetnetworkconf.cgi on port 8080, leading to full control if the admin password equals the Wi-Fi password or has the default admin value. This is related to Firmware 01.11.2017-11:43:44, Boot v0.70.03,...

praktiker.hu XSS vulnerability

Vulnerable URL: https://www.praktiker.hu/search/index?keyword=1%27-confirm/OPENBUGBOUNTY/-%27 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 01.11.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 52152 VIP website status:| No Check...

ph4.ru XSS vulnerability

Vulnerable URL: http://www.ph4.ru/tag.php?tag=%D0%A0%D0%B0%D0%B4%D0%B8%D0%BE%D1%81%D1%82%D0%B0%D0%BD%D1%86%D0%B8%D0%B8%22%3E%3Cscript%3Ealert/OPENBUGBOUNTY/%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 01.11.2017 Vulnerability type:| XSS Vulnerability...

www1.ericsson.com XSS vulnerability

Vulnerable URL: http://www1.ericsson.com/spotlight/services/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alertOPENBUGBOUNTY Details: Description| Value ---|--- Patched:| Yes, at 01.11.2017 Latest check for patch:| 01.11.2017 11:36 GMT Vulnerability type:| XSS Vulnerability...

pcgames.de XSS vulnerability

Vulnerable URL: http://www.pcgames.de/AGB/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 01.11.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 12497 Google Pagerank| 5 VIP website status:| Yes Check pcgames.de SSL connection:| Grade:...