Generating SSH Keys is broken (using Bitbucket Server) -- ui and config file

Please watch my short video illustrating the experience. https://www.youtube.com/watch?v=wPUAkG78BFE&feature=youtu.be Scenario 1: On MacOS X Sierra when setting up SourceTree for first time and choosing "SSH" as the authentication method, SourceTree: Should not have a URL for the Bitbucket...

Linksys WAG120N ADSL2 + Modem Router Download Config File Vulnerability

Exploit for cgi platform in category web applications Exploit Title: Linksys WAG120N ADSL2 + Modem Router Download Config File Vulnerability Vendor Homepage: http://www.linksys.com/in/support-product?pid=01t80000003prsQAAQ Exploit : http://192.168.1.1/Routercfg.cfg Open Routercfg.cfg with Notepad...

Fedora 25 : xen (2016-81e5a36d8c)

enable xen livepatch in hypervisor via .config file qemu-kvm: Directory traversal flaw in 9p virtio backend CVE-2016-7116 qemu: hw: net: Heap overflow in xlnx.xps-ethernetlite CVE-2016-7161 CR0.TS and CR0.EM not always honored for x86 HVM guest XSA-190, CVE-2016-7777 Note that Tenable Network...

Grimbb hash disclosure vulnerability

Grimbb is an open source PHP-based flat file electronic publishing version of the system . Grimbb version 1.3 has a hash information leakage vulnerability, the vulnerability stems from unauthorized access to the system's configuration file to store user information, an attacker can use this...

CVE-2016-6325

The Tomcat package on Red Hat Enterprise Linux RHEL 5 through 7, JBoss Web Server 3.0, and JBoss EWS 2 uses weak permissions for 1 /etc/sysconfig/tomcat and 2 /etc/tomcat/tomcat.conf, which allows local users to gain privileges by leveraging membership in the tomcat group...

mysql: general_log can write to configuration files, leading to privilege escalation (CPU Oct 2016)

It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server...

BSNL Teracom Router Firmware Rewrite / Link Modification

Multiple Vulnerabilities in TERACOM ROUTER Author: Ajay Gowtham aka AJOXR Contact: gowtham.ajay5 at gmail.com Vulnerability Type: Insecure Upload File Permissions Affected Module: Upload Functionality Criticality: Medium Device Model: BSNL Teracom T2-B-Gawv1.4U10Y-BI is WiFi enabled ADSL2+...

The vulnerability of the ABB PCM600 control and configuration device allows a intruder to gain access to user passwords.

The vulnerability of the ABB PCM600 control and configuration device lies in the fact that the password for the main application is stored in an unencrypted form after being changed by the user. Exploiting this vulnerability could allow a malicious actor, operating locally, to gain access to user...

CVE-2016-0338

IBM Security Identity Manager ISIM Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 allows local users to discover cleartext passwords by 1 reading a configuration file or 2 examining a process...

Arbitrary File Read Vulnerability in the Call Center of Shenzhen Jishu Communication Co.

The call center of Shenzhen Jishu Communication Co., Ltd. is a new generation of enterprise-level call center system. An arbitrary file read vulnerability exists in the call center of Shenzhen JTS Communications Co. Due to poor filtering of sysmaint/config/fileedit.php and...

The vulnerability of the Zyxel ZLD operating system allows a remote attacker to escalate their privileges.

Exploiting a vulnerability in the operating system of the Zyxel ZyWALL USG 300 network interface card allows a malicious actor to upload and download device configuration files without additional authentication. As a result, the malicious actor can view or modify the administrator’s password...

Alertus Desktop Notification for OS X Design Vulnerability

Alertus Desktop Notification for OS X is a suite of desktop notification software from Alertus Inc. for OS X, a specialized operating system developed for Mac computers. A security vulnerability exists in Alertus Desktop Notification for OS X prior to version 2.9.30.1710, which arises from the...

Vimeo: All Vimeo Private videos disclosure via Authorization Bypass

Hello, There is a vulnerability in https://vimeo.com/VIDEOID?action=share that makes all Vimeo private videos available to anybody. POC link : http://opnsec.com/vimeo/vl/videoLeak.php?video=VIDEOID POC requirements : - No need to be logged in Vimeo - Because of sensitivity of this, I put a passwo...

CVE-2015-8399

This CVE affects Atlassian Confluence (before 5.8.17). The vulnerability is an information disclosure where a remote authenticated user can read configuration files via the decoratorName parameter to spaces/viewdefaultdecorator.action or admin/viewdefaultdecorator.action. The issue is caused by a...

CVE-2016-2289

Directory traversal vulnerability in ICONICS WebHMI 9 and earlier allows remote attackers to read configuration files, and consequently discover password hashes, via unspecified vectors...

pfSense Firewall 2.2.5 - Config File Cross-Site Request Forgery

function submitRequest var xhr = new XMLHttpRequest; xhr.open"POST", "https://192.168.0.103/diagbackup.php", true; xhr.setRequestHeader"Accept", "text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8"; xhr.setRequestHeader"Accept-Language", "en-US,en;q=0.5";...

pfSense Firewall 2.2.5 - Config File Cross-Site Request Forgery

Exploit for php platform in category web applications function submitRequest var xhr = new XMLHttpRequest; xhr.open"POST", "https://192.168.0.103/diagbackup.php", true; xhr.setRequestHeader"Accept", "text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8";...

CVE-2015-7919

SearchBlox 8.3 before 8.3.1 allows remote attackers to write to the config file, and consequently cause a denial of service application crash, via unspecified vectors...

Code injection

SearchBlox 8.3 before 8.3.1 allows remote attackers to write to the config file, and consequently cause a denial of service application crash, via unspecified vectors...

CVE-2015-7919

SearchBlox 8.3 before 8.3.1 allows remote attackers to write to the config file, and consequently cause a denial of service application crash, via unspecified vectors...