INNEO Startup TOOLS 2018 M040 13.0.70.3804 - Remote Code Execution

Exploit Title: INNEO Startup TOOLS 2018 M040 13.0.70.3804 - Remote Code Execution Date: 2020-07-23 Exploit Author: Patrick Hener, SySS GmbH Many credits go to Dr. Benjamin Heß, SySS GmbH for helping with php oddities and the powershell payload Advisory: SYSS-2020-028...

CVE-2020-15492

An issue was discovered in INNEO Startup TOOLS 2017 M021 12.0.66.3784 through 2018 M040 13.0.70.3804. The sutsrv.exe web application served on TCP port 85 includes user input into a filesystem access without any further validation. This might allow an unauthenticated attacker to read files on the...

CVE-2017-2018

...

solutions.1c.ru XSS vulnerability

Open Bug Bounty ID: OBB-454812 Description| Value ---|--- Affected Website:| solutions.1c.ru Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...

wankflix.com XSS vulnerability

Open Bug Bounty ID: OBB-440282 Description| Value ---|--- Affected Website:| wankflix.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Shee...

movie4k.life XSS vulnerability

Open Bug Bounty ID: OBB-418736 Description| Value ---|--- Affected Website:| movie4k.life Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Shee...

cinechile.cl XSS vulnerability

Open Bug Bounty ID: OBB-417398 Description| Value ---|--- Affected Website:| cinechile.cl Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Shee...

tccaccueil.be Open Redirect vulnerability

Open Bug Bounty ID: OBB-414433 Description| Value ---|--- Affected Website:| tccaccueil.be Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat Sheet Vulnerab...

CVE-2017-1000112

creationtimestamp| type| source ---|---|--- 2017-08-13 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/43418 2017-08-14 18:08:43+00:00| published-proof-of-concept| https://t.me/canyoupwnme/2024 2017-08-14 20:17:49+00:00| published-proof-of-concept| https://t.me/HackerOne/920...

ietecnologico-madrid-cundinamarca.edu.co XSS vulnerability

Open Bug Bounty ID: OBB-271679 Description| Value ---|--- Affected Website:| ietecnologico-madrid-cundinamarca.edu.co Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3...