Exim Configuration File Path Elevation of Privilege Vulnerability

Exim is an open source messaging agent MTA developed by the University of Cambridge in the UK that runs on Unix systems and is responsible for routing, forwarding and delivering mail. A security vulnerability exists in Exim that stems from an error in the program's handling of environment variabl...

Proxmox VE 3/4 - Insecure Hostname Checking Remote Root Exploit

Exploit for linux platform in category remote exploits ===================================================================== Proxmox VE 3/4 Insecure Hostname Checking Remote Root Exploit, XSS, Privileges escalation ===================================================================== Description...

Proxmox VE 3/4 - Insecure Hostname Checking Remote Command Execution

===================================================================== Proxmox VE 3/4 Insecure Hostname Checking Remote Root Exploit, XSS, Privileges escalation ===================================================================== Description =========== Proxmox is a popular virtualization solutio...

SOL06288381 - NTP vulnerabilities CVE-2015-7977 and CVE-2015-7978

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

Updated nginx packages fix security vulnerabilities

Updated nginx package fixes security vulnerabilities: Several vulnerabilities were discovered in the resolver in nginx, leading to denial of service or, potentially, to arbitrary code execution. These only affect nginx if the "resolver" directive is used in a configuration file CVE-2016-0742,...

phpMyBackupPro 2.5 - Remote Command Execution / Cross-Site Request Forgery

Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/PHPMYBACKUPPRO-v2.5-RCE.txt Vendor: ============================= www.phpmybackuppro.net project site: sourceforge.net/projects/phpmybackup/ Product: ===========================...

Remote Code Execution via CSRF in iTop

High-Tech Bridge Security Research Lab discovered a Remote Code Execution vulnerability in iTop that is exploitable via Cross-Site Request Forgery flaw that is also present in the application. The vulnerability exists due to absence of validation of HTTP request origin in...

Exploit for Path Traversal in Elegantthemes Divi

WordPressMassExploiter Mass exploiter of CVE-2015-1579 for Wor...

FreeBSD Configuration Information Disclosure Vulnerability

FreeBSD is a Unix-like operating system. FreeBSD suffers from a configuration information disclosure vulnerability that allows an attacker to access the daemon configuration file /etc/bsnmpd.conf due to the presence of an insecure default configuration in FreeBSD...

nginx -- multiple vulnerabilities

Maxim Dounin reports: Several problems in nginx resolver were identified, which might allow an attacker to cause worker process crash, or might have potential other impact if the "resolver" directive is used in a configuration file...

pfSense Firewall 2.2.5 - Config File Cross-Site Request Forgery

pfSense Firewall 2.2.5 - Config File Cross-Site Request Forgery function submitRequest var xhr = new XMLHttpRequest; xhr.open"POST", "https://192.168.0.103/diagbackup.php", true; xhr.setRequestHeader"Accept", "text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8";...

SeaWell Networks Spectrum SDC 02.05.00 Traversal / Privilege Escalation

Exploit Title: SeaWell Networks Spectrum - Multiple Vulnerabilities Discovered by: Karn Ganeshen Vendor Homepage: http://www.seawellnetworks.com/spectrum/ Versions Reported: Spectrum SDC 02.05.00, Build 02.05.00.0016 CVE-ID: CVE-2015-8282 CVE-2015-8283 CVE-2015-8284 About SeaWell Networks Spectru...

FreeBSD bsnmpd Information Disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory Information Title: FreeBSD bsnmpd information disclosure Advisory URL: https://pierrekim.github.io/advisories/CVE-2015-5677-freebsd-bsnmpd.txt Blog URL: https://pierrekim.github.io/blog/2016-01-15-cve-2015-5677-freebsd-bsnmpd.html Date...

Vulnerability warning: the application server glassfish arbitrary file read vulnerability-vulnerability warning-the black bar safety net

1 http://localhost:4848/theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd java voice will put the"%c0%ae"resolved to"\uC0AE",and finally escape to ASCCII character"." Point. Jane simple singl...

Design/Logic Flaw

ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.kPE and ZXV10 W300 devices W300V1.0.0fER1PE allow remote authenticated users to bypass intended access restrictions, and discover credentials and keys, by reading the configuration file, a different vulnerability than CVE-2015-7248...

CVE-2015-8703

ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.kPE and ZXV10 W300 devices W300V1.0.0fER1PE allow remote authenticated users to bypass intended access restrictions, and discover credentials and keys, by reading the configuration file, a different vulnerability than CVE-2015-7248...

CVE-2015-8703

CVE-2015-8703 affects ZTE ZXHN H108N R1A (before ZXHNH108NR1A.k_PE) and ZXV10 W300 (W300V1.0.0f_ER1_PE). Root cause: remote authenticated users can read the device configuration file to bypass access restrictions and discover credentials and keys. Impact: information disclosure (credentials/keys)...

Honeywell Midas Gas Detector path traversal Vulnerability, CVE-2 0 1 5-7 9 0 7-a vulnerability warning-the black bar safety net

Affected system: Honeywell Midas gas detectors 1. 13b3 Honeywell Midas Black gas detectors 2. 13b3 Description: CVECAN ID: CVE-2 0 1 5-7 9 0 7 Midas and Midas Black gas detectors is to test the toxic gas, combustible gas and the outside gas of the detector. Honeywell Midas gas detectors 1. 13b3...

CVE-2015-7907

Directory traversal vulnerability in the web server on Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors before 2.13b3 allows remote attackers to bypass authentication, and write to a configuration file or trigger a calibration or test, via unspecified vectors...

Directory traversal

Directory traversal vulnerability in the web server on Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors before 2.13b3 allows remote attackers to bypass authentication, and write to a configuration file or trigger a calibration or test, via unspecified vectors...