Lucene search
+L

173 matches found

Exploit DB
Exploit DB
added 2019/11/05 12:0 a.m.224 views

SD.NET RIM 4.7.3c - 'idtyp' SQL Injection

Exploit Title: SD.NET RIM 4.7.3c - 'idtyp' SQL Injection Date: 2019-11-05 Exploit Author: Fabian Mosch r-tec IT Security GmbH Vendor Homepage: https://www.sitzungsdienst.net/ Software Link: https://www.sitzungsdienst.net/2018/12/sd-net-rim-4-7-3-veroeffentlicht/ Version: 4.7.3c Tested on: 4.7.3c...

7.4AI score
Exploits0
RedhatCVE
RedhatCVE
added 2019/11/03 4:20 p.m.33 views

CVE-2016-6311

It was found that when issuing a GET request which results in a 302 redirect, and when the request header 'Host' field was not set, the response header field 'Location' contains the internal IP address of the server. An attacker could use this disclose information which they are not authorized to...

5CVSS7AI score0.02264EPSS
Exploits0References1
NVD
NVD
added 2019/10/28 3:15 p.m.26 views

CVE-2019-17224

The web interface of the Compal Broadband CH7465LG modem version CH7465LG-NCIP-6.12.18.25-2p6-NOSH is vulnerable to a /%2f/ path traversal attack, which can be exploited in order to test for the existence of a file pathname outside of the web root directory. If a file exists but is not part of th...

5.3CVSS5.3AI score0.01227EPSS
Exploits1References2
Prion
Prion
added 2019/10/28 3:15 p.m.17 views

Path traversal

The web interface of the Compal Broadband CH7465LG modem version CH7465LG-NCIP-6.12.18.25-2p6-NOSH is vulnerable to a /%2f/ path traversal attack, which can be exploited in order to test for the existence of a file pathname outside of the web root directory. If a file exists but is not part of th...

5CVSS5.2AI score0.01227EPSS
Exploits1References2Affected Software1
Hacker One
Hacker One
added 2019/08/26 1:17 a.m.28 views

ZEIT: Unauthorized admission to any team in zeit.co

step no.1: open : https://zeit.co/teams/invite/ XXXX and this is a code "CzKyCgbB" of joining in a team called "maxhacker" if we generate a list consists of 8 capital and small letters with any generate tools F565462 knowing that the invitation code of any team is constant...

0.4AI score
Exploits0
Veracode
Veracode
added 2019/05/02 6:38 a.m.16 views

Information Disclosure

Red Hat JBoss Enterprise Application Platform is vulnerable to information disclosure. GET request which results in a 302 redirect, and when the request header 'Host' field was not set, the response header field 'Location' contains the internal IP address of the server. A remote attacker could us...

5.3CVSS6.8AI score0.02264EPSS
Exploits0References12Affected Software126
OSV
OSV
added 2018/12/20 5:29 p.m.30 views

CVE-2018-1000875

Berkeley Open Infrastructure for Network Computing BOINC Server and Website Code version 0.9-1.0.2 contains a CWE-302: Authentication Bypass by Assumed-Immutable Data vulnerability in Website Terms of Service Acceptance Page that can result in Access to any user account. This attack appear to be...

9.8CVSS7.1AI score0.01676EPSS
Exploits0References1
Prion
Prion
added 2018/12/20 5:29 p.m.17 views

Authentication flaw

Berkeley Open Infrastructure for Network Computing BOINC Server and Website Code version 0.9-1.0.2 contains a CWE-302: Authentication Bypass by Assumed-Immutable Data vulnerability in Website Terms of Service Acceptance Page that can result in Access to any user account. This attack appear to be...

7.5CVSS9.5AI score0.01676EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2018/12/20 5:0 p.m.53 views

CVE-2018-1000875

CVE-2018-1000875 affects BOINC Server and Website Code versions 0.9–1.0.2. The vulnerability is a CWE-302 Authentication Bypass by Assumed-Immutable Data on the Website Terms of Service Acceptance Page, allowing access to any user account via a specially crafted URL. The issue is reported as fixe...

9.8CVSS9.5AI score0.01676EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2018/06/29 12:0 a.m.2 views

Command Execution Vulnerability in Multiple Interfaces of TP_LINK TL-WAR302 Router

TPLINK TL-WAR302 is an enterprise-grade 300M wireless VPN router with support for multiple VPN clients and Internet behavior management. A command execution vulnerability exists in multiple interfaces of the TPLINK TL-WAR302 router. The vulnerability is caused due to TP-LINK WAR302 multiple...

7.8AI score
Exploits0
Hacker One
Hacker One
added 2018/06/21 5:30 a.m.19 views

Brave Software: OPEN REDIRECTION at every 302 HTTP CODE

Summary i guess every 302 HTTP CODE on https://publishers.basicattentiontoken.org possible to OpenRedirection Steps To Reproduce: 1. I edited the request when i got redirected from this request url...

0.2AI score
Exploits0
RedHat Linux
RedHat Linux
added 2017/12/13 6:26 p.m.8 views

EAP7: Internal IP address disclosed on redirect when request header Host field is not set

It was found that when issuing a GET request which results in a 302 redirect, and when the request header 'Host' field was not set, the response header field 'Location' contains the internal IP address of the server. An attacker could use this disclose information which they are not authorized to...

5.3CVSS7.3AI score0.02264EPSS
Exploits0References4
Hacker One
Hacker One
added 2017/12/07 9:3 p.m.41 views

Open-Xchange: SSRF in VCARD photo upload functionality

FYI - Tested on local installation of App Suite 7.8.4 REV 14, CentOS 7.4, x64 Hello, I believe I may have found another SSRF re-direct vulnerability which again will allow port scanning of the App Suite server and the internal network, this is similar to my earlier report: 293847 The endpoint is...

7AI score
Exploits0
Hacker One
Hacker One
added 2017/10/03 7:32 a.m.19 views

Paragon Initiative Enterprises: CSRF token does not valided during blog comment

SUMMURY ================= i tested that all post request has CSRF token. During Author profile creation also a CSRF token is posted. Now when i removed this CSRF token , show s error like bellow CSRF validation failed 0 /var/www/csprng/src/Cabin/Bridge/Controller/Author.php52:...

7.1AI score
Exploits0
FireEye
FireEye
added 2017/08/22 2:0 p.m.45 views

Hiking Club Malvertisements Drop Monero Miners Via Neptune Exploit Kit

Exploit kit EK activity has been on the decline ever since Angler Exploit Kit was shut down in 2016. Fewer people using Internet Explorer and a drop in browser support for Adobe Flash – two primary targets of many exploit kits – have also contributed to this decline. Additionally, some popular...

9.3CVSS9AI score0.94996EPSS
Exploits50References15
Malwarebytes
Malwarebytes
added 2017/08/02 3:0 p.m.105 views

Enemy at the gates: Reviewing the Magnitude exploit kit redirection chain

Over the last few months, we have been keeping an eye on the Magnitude exploit kit which is mainly used to deliver the Cerber ransomware to specific countries in Asia. Our telemetry shows that South Korea is most impacted via ongoing malvertising campaigns. When a visitor goes to a website that...

6.8AI score
Exploits0
Hacker One
Hacker One
added 2017/05/24 6:16 p.m.155 views

Cuvva: CRLF Injection [vpn.corp.cuvva.com]

Hi team, Found a CRLF injection in vpn.corp.cuvva.com Poc https://vpn.corp.cuvva.com/sessionstart/%0aSet-Cookie:NEWCOOKIE123 Response: HTTP/1.1 302 Found Date: Wed, 24 May 2017 18:13:57 GMT Connection: close Content-Type: text/html; charset=UTF-8 Location: https://vpn.corp.cuvva.com/...

4.3CVSS6.5AI score0.04622EPSS
Exploits3
NVD
NVD
added 2017/05/05 8:29 p.m.23 views

CVE-2016-6877

Citrix XenMobile Server before 10.5.0.24 allows man-in-the-middle attackers to trigger HTTP 302 redirections via vectors involving the HTTP Host header and a cached page. NOTE: the vendor reports "our internal analysis of this issue concluded that this was not a valid vulnerability" because an...

5.3CVSS5.1AI score0.01275EPSS
Exploits0References2
Prion
Prion
added 2017/05/05 8:29 p.m.15 views

Design/Logic Flaw

Citrix XenMobile Server before 10.5.0.24 allows man-in-the-middle attackers to trigger HTTP 302 redirections via vectors involving the HTTP Host header and a cached page. NOTE: the vendor reports "our internal analysis of this issue concluded that this was not a valid vulnerability" because an...

2.6CVSS6.9AI score0.01275EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/05/05 8:0 p.m.23 views

CVE-2016-6877

Citrix XenMobile Server before 10.5.0.24 allows man-in-the-middle attackers to trigger HTTP 302 redirections via vectors involving the HTTP Host header and a cached page. NOTE: the vendor reports "our internal analysis of this issue concluded that this was not a valid vulnerability" because an...

5.1AI score0.01275EPSS
Exploits0References2
Rows per page
Query Builder