72 matches found
CVE-2012-4366: Insecure default WPA2 passphrase in multiple Belkin wireless routers
CVE-2012-4366: Insecure default WPA2 passphrase in multiple Belkin wireless routers I. Background Belkin ships many wireless routers with an encrypted wireless network configured by default. The network name ESSID and the seemingly random password is printed on a label at the bottom of the device...
CVE-2012-4366
CVE-2012-4366 affects Belkin Surf N150 (F7D1301v1), N900 (F9K1104v1), N450 (F9K1105V2), and N300 (F7D2301v1) routers. Root cause: default WPA2-PSK passphrase is deterministically generated from eight hex digits of the WAN MAC address, making the key predictable. Impact: attacker can access the wi...
CVE-2010-4366
Multiple cross-site scripting XSS vulnerabilities in forumnewtopic.php in Chameleon Social Networking allow remote attackers to inject arbitrary web script or HTML via the 1 threadtitle and 2 threaddescription parameters in a message...
CVE-2010-4366
CVE-2010-4366: Concrete details across connected records show XSS in Chameleon Social Networking. The vulnerability is in forum_new_topic.php, exploitable via user-supplied thread_title and thread_description parameters in a message. Affected component: the forum topic creation feature of Chamele...
CVE-2010-4366
creationtimestamp| type| source ---|---|--- 2010-11-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/15543...
CVE-2009-4366
ScriptsEz Ez Blog 1.0 contains a cross-site scripting (XSS) vulnerability in index.php where the yr parameter in a bmonth action can be used to inject arbitrary web script/HTML. CVE-2009-4366 has CVSSv2 base score 4.3 (Medium); attack vector: Network; authentication: None; confidentiality impact:...
CVE-2009-4366
creationtimestamp| type| source ---|---|--- 2009-12-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/10458 2009-12-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/10461...
CVE-2008-4366
CVE-2008-4366 is an unrestricted file upload in the image upload component of Camera Life 2.6.2b4. According to the connected documents, remote authenticated users can upload a file with an executable extension and then access it via a direct URL under images/photos/upload, potentially executing ...
CVE-2008-4366
creationtimestamp| type| source ---|---|--- 2008-09-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6594...
CVE-2006-4366
CVE-2006-4366 affects RedBLoG 0.5. It describes a PHP remote file inclusion in index.php, exploitable via a URL in the root_path parameter, enabling remote code execution. The vulnerability is caused by using an unvalidated root_path value to include PHP files, allowing an attacker to execute arb...
MS:1305CCBE-2B95-4366-9135-49F38911A01D
...
MS:06860068-D21E-4366-965C-B36C104A68F3
...