CVE-2006-3604

Directory traversal vulnerability in FlexWATCH Network Camera 3.0 and earlier allows remote attackers to bypass access restrictions for 1 admin/aindex.asp or 2 admin/aindex.html via a .. dot dot and encoded / %2f sequence in the URL...

CVE-2006-3603

Cross-site scripting XSS vulnerability in index.php in FlexWATCH Network Camera 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the URL...

CVE-2006-3604

The CVE-2006-3604 entry corresponds to a directory traversal vulnerability in FlexWATCH Network Camera, affecting version 3.0 and earlier. The flaw allows remote attackers to bypass access restrictions for admin pages (admin/aindex.asp and admin/aindex.html) by crafting a URL containing a .. (dot...

PT-2006-4478 · Flexwatch · Flexwatch Network Camera

Name of the Vulnerable Software and Affected Versions: FlexWATCH Network Camera versions 3.0 and earlier Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the URL. Recommendations: F...

PT-2006-4479 · Flexwatch · Flexwatch Network Camera

Name of the Vulnerable Software and Affected Versions: FlexWATCH Network Camera versions 3.0 and earlier Description: A directory traversal issue allows remote attackers to bypass access restrictions for sensitive pages, such as "admin/aindex.asp" or "admin/aindex.html", by using a ".." dot dot a...

FlexWATCH 3.0 - AIndex.asp Authentication Bypass

FlexWATCH 3.0 - AIndex.asp Authentication Bypass source: https://www.securityfocus.com/bid/18948/info FlexWatch is prone to an authorization-bypass vulnerability. This issue is due to a failure in the application to properly verify user-supplied input. An attacker can exploit this issue to bypass...

FlexWATCH Network Camera - Cross-Site Scripting

FlexWATCH Network Camera - Cross-Site Scripting source: https://www.securityfocus.com/bid/18936/info FlexWATCH Network Camera is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...

obotix IP Camera M1 1.9.4 .7M10 2.0.5.2 - help Script Cross-Site Scripting

obotix IP Camera M1 1.9.4 .7M10 2.0.5.2 - help Script Cross-Site Scripting source: https://www.securityfocus.com/bid/18022/info The Mobotix IP camera is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the device to properly sanitize user-supplied input...

obotix IP Camera M1 1.9.4 .7M10 2.0.5.2 - events.tar?source_ip Cross-Site Scripting

obotix IP Camera M1 1.9.4 .7M10 2.0.5.2 - events.tar?sourceip Cross-Site Scripting source: https://www.securityfocus.com/bid/18022/info The Mobotix IP camera is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the device to properly sanitize user-suppli...

obotix IP Camera M1 1.9.4 .7/M10 2.0.5.2 - 'events.tar?source_ip' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18022/info The Mobotix IP camera is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the device to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

obotix IP Camera M1 1.9.4 .7/M10 2.0.5.2 - 'eventplayer?get_image_info_abspath' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18022/info The Mobotix IP camera is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the device to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

obotix IP Camera M1 1.9.4 .7/M10 2.0.5.2 - help Script Cross-Site Scripting

source: https://www.securityfocus.com/bid/18022/info The Mobotix IP camera is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the device to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

Linksys Wireless Internet Camera File Disclosure (2004) - Active Check

The Linksys Wireless Internet Camera contains a CGI that allows remote attackers to disclosue sensitive files stored on the server. SPDX-FileCopyrightText: 2004 Noam Rathaus Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Linksys Wireless Internet Camera File Disclosure

The Linksys Wireless Internet Camera contains a CGI that allows remote attackers to disclosue sensitive files stored on the server. An attacker may use this CGI to disclosue the password file and from it the password used by the root use the MD5 value. OpenVAS Vulnerability Test $Id:...

Telnet Banner Reporting

This scripts reports the received banner of a Telnet service. SPDX-FileCopyrightText: 2005 SecuriTeam SPDX-FileCopyrightText: Reworked, improved and extended detection code and pattern since 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C...

CVE-2004-2508

Cross-site scripting XSS vulnerability in main.cgi in Linksys WVC11B Wireless-B Internet Video Camera allows remote attackers to inject arbitrary web script or HTML via the nextfile parameter...

CVE-2004-2507

The CVE-2004-2507 entry concerns the Linksys WVC11B Wireless-B Internet Video Camera. Affected software: main.cgi. Vulnerability type: absolute path traversal, exploitable via an absolute pathname provided in the next_file parameter. Root cause: improper handling of file paths in main.cgi allows ...

CVE-2004-2508

CVE-2004-2508 is an XSS in Linksys WVC11B Wireless-B Internet Video Camera (vulnerable component: main.cgi, parameter: next_file). OpenVAS entries describe a related CGI that discloses sensitive files on the server, including potential exposure of the root password file contents, indicating a bro...

CVE-2004-2507

Absolute path traversal vulnerability in main.cgi in Linksys WVC11B Wireless-B Internet Video Camera allows remote attackers to read arbitrary files via an absolute pathname in the nextfile parameter...

CVE-2005-2737

Cross-site scripting XSS vulnerability in PhotoPost PHP Pro 5.1 allows remote attackers to inject arbitrary web script or HTML via EXIF data, such as the Camera Model Tag...