Lucene search
K

97 matches found

Positive Technologies
Positive Technologies
added 2020/08/09 12:0 a.m.6 views

PT-2020-14841 · Prometheus +2 · Prometheus Blackbox Exporter +2

Name of the Vulnerable Software and Affected Versions: Prometheus Blackbox Exporter versions through 0.17.0 Description: The issue allows for a Server-Side Request Forgery SSRF via the /probe endpoint with the target parameter. There is a discussion suggesting this could be seen as both intended...

5.8CVSS6.6AI score0.02698EPSS
Exploits1References18
Openbugbounty
Openbugbounty
added 2020/01/27 3:42 a.m.6 views

blackbox-dvr.ru Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1075703 Security Researcher geeknik Helped patch 8930 vulnerabilities Received 8 Coordinated Disclosure badges Received 21 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting blackbox-dvr.ru website an...

0.2AI score
Exploits0
Kitploit
Kitploit
added 2019/08/01 1:8 p.m.49 views

Slurp - S3 Bucket Enumerator

Blackbox/whitebox S3 bucket enumerator Overview Credit to all the vendor packages that made this tool possible. This is a security tool; it's meant for pen-testers and security professionals to perform audits of s3 buckets. Features Scan via domains; you can target a single domain or a list of...

7.4AI score
Exploits0References1
exploitpack
exploitpack
added 2019/05/03 12:0 a.m.51 views

Crestron AMBarco wePresent WiPGExtron ShareLinkTeq AV ITSHARP PN-L703WAOptoma WPS-ProBlackbox HD WPSInFocus LiteShow - Remote Command Injection

Crestron AMBarco wePresent WiPGExtron ShareLinkTeq AV ITSHARP PN-L703WAOptoma WPS-ProBlackbox HD WPSInFocus LiteShow - Remote Command Injection Exploit Title: Barco/AWIND OEM Presentation Platform Unauthenticated Remote Command Injection Date: 05/01/2019 Exploit Author: Jacob Baines Tested on:...

10CVSS9.9AI score0.98952EPSS
Exploits10
ThreatPost
ThreatPost
added 2019/05/02 9:15 p.m.176 views

Critical Flaws Found in Eight Wireless Presentation Systems

Multiple wireless presentation systems have critical vulnerabilities – including a remote command-injection glitch and an unauthenticated remote stack buffer overflow flaw. Wireless presentation systems allow users to display their content directly from their laptop no network cable necessary by...

10CVSS0.9AI score0.98952EPSS
Exploits21References15
Prion
Prion
added 2019/04/30 9:29 p.m.19 views

Command injection

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pr...

10CVSS9.9AI score0.98952EPSS
Exploits10References4Affected Software12
NVD
NVD
added 2019/04/30 9:29 p.m.33 views

CVE-2019-3930

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pr...

10CVSS9.8AI score0.06957EPSS
Exploits1References1
Prion
Prion
added 2019/04/30 9:29 p.m.21 views

Stack overflow

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pr...

10CVSS9.7AI score0.06957EPSS
Exploits1References1Affected Software12
NVD
NVD
added 2019/04/30 9:29 p.m.26 views

CVE-2019-3929

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pr...

10CVSS10AI score0.98952EPSS
Exploits10References5
OSV
OSV
added 2019/04/30 9:29 p.m.4 views

CVE-2019-3929

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pr...

9.8CVSS7.4AI score0.98952EPSS
Exploits10References5
Cvelist
Cvelist
added 2019/04/30 8:25 p.m.37 views

CVE-2019-3930

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pr...

9.8AI score0.06957EPSS
Exploits1References1
CVE
CVE
added 2019/04/30 8:25 p.m.60 views

CVE-2019-3930

CVE-2019-3930 affects Crestron AM-100/AM-101, Barco wePresent WiPG-1000P/ WiPG-1600W (pre-2.4.1.19), Extron ShareLink 200/250, Teq AV IT WIPS710, SHARP PN-L703WA, Optoma WPS-Pro, Blackbox HD WPS, InFocus LiteShow3/4. Root cause: stack buffer overflow in libAwgCgi.so PARSERtoCHAR. Vulnerability al...

10CVSS9.8AI score0.06957EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/04/30 8:21 p.m.41 views

CVE-2019-3929

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pr...

10AI score0.98952EPSS
Exploits10References4
ATTACKERKB
ATTACKERKB
added 2019/04/30 12:0 a.m.41 views

CVE-2019-3929

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pr...

10CVSS9.8AI score0.98952EPSS
In wildExploits10References6
n0where
n0where
added 2019/02/21 3:51 a.m.226 views

Scalable Fuzzing Infrastructure: ClusterFuzz

ClusterFuzz is a scalable fuzzing infrastructure which finds security and stability issues in software. It is used by Google for fuzzing the Chrome Browser, and serves as the fuzzing backend for OSS-Fuzz . ClusterFuzz provides many features which help seamlessly integrate fuzzing into a software...

Exploits0References6
ripstech
ripstech
added 2018/07/31 11:0 a.m.11 views

Comparison of Application Security Testing Approaches

Overview The following table lists a side-by-side comparison of different application security testing approaches. Additional rating details are available when hovering over each column. In the following, each approach is introduced. Category Automated Security Testing Manual Security Testing...

7.1AI score
Exploits0
Hacker One
Hacker One
added 2017/07/20 10:22 a.m.36 views

Zomato: Length extension attack leading to HTML injection

At the profile setting page where I can set my personal website I found this url: https://www.zomato.com/redirect?u=xxx&t=yyy Where xxx is the url that we can control and yyy is the hash. Through out blackbox testing I find out that if md5somescret + url == t then the redirect is allowed. This is...

6.8AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/11/15 9:19 a.m.11 views

blackbox.com XSS vulnerability

Vulnerable URL: https://www.blackbox.com/en-us/store/selector.aspx?s=";alert'OPENBUGBOUNTY';// Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 144418 VIP website status:| No Check blackbox.com SSL connection:|...

6.3AI score
Exploits0
Kitploit
Kitploit
added 2016/09/25 8:47 p.m.58 views

BLACKBOx - A Penetration Testing Framework

Password Attacks: MD5 CRACKER SHA1 CRACKER SHA224 CRACKER SHA256 CRACKER SHA384 CRACKER SHA512 CRACKER MSSQL2000 CRACKER MSSQL2005 CRACKER MYSQL323 CRACKER MYSQL41 CRACKER ORACLE11 CRACKER Web Hacking : Wordpress Bruteforce – Bruteforce wordpress panel FTP Bruteforce – Bruteforcing FTP LOGIN SSH...

8.3AI score
Exploits0References1
hackapp
hackapp
added 2016/04/01 9:32 a.m.16 views

AutoGuard Dash Cam - Blackbox - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application AutoGuard Dash Cam - Blackbox published at the 'play' market has multiple vulnerabilities...

0.8AI score
Exploits0References1Affected Software1
Rows per page
Query Builder