Multiple Eaton ePDUs Path Traversal Vulnerabilities

Eaton ePDUs EAMxxx is a rack-mounted power distribution unit module from Eaton Corporation of America. A path traversal vulnerability exists in multiple Eaton ePDUs products, allowing remote attackers to exploit the vulnerability by submitting a special URL to access configuration files...

OLX: Public Vulnerable Version of Confluence https://confluence.olx.com

The public server is vulnerable to Insecure Direct Object Reference, allowing any authenticated user to read configuration files from the application such as the content of webapp directory in confluence. Link to the public issue: https://jira.atlassian.com/browse/CONF-39704 PoC: GET:...

CVE-2016-9344

An issue was discovered in Moxa MiiNePort E1 versions prior to 1.8, E2 versions prior to 1.4, and E3 versions prior to 1.1. An attacker may be able to brute force an active session cookie to be able to download configuration files...

CVE-2016-9344

An issue was discovered in Moxa MiiNePort E1 versions prior to 1.8, E2 versions prior to 1.4, and E3 versions prior to 1.1. An attacker may be able to brute force an active session cookie to be able to download configuration files...

CVE-2016-9348

An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPor...

CVE-2016-8346

An issue was discovered in Moxa EDR-810 Industrial Secure Router. By accessing a specific uniform resource locator URL on the web server, a malicious user is able to access configuration and log files PRIVILEGE ESCALATION...

Path traversal

An issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. After an administrator downloads a configuration file, a copy of the configuration file, which includes hashes of user passwords, is saved to a location that is accessible without...

CVE-2016-9344

The CVE-2016-9344 issue affects Moxa MiiNePort E1 (pre-1.8), E2 (pre-1.4), and E3 (pre-1.1) devices. Affects the authentication flow by allowing an attacker to brute-force an active session cookie to download configuration files. Reported impact includes potential exposure of configuration data; ...

CVE-2016-9357

An issue was discovered in certain legacy Eaton ePDUs -- the affected products are past end-of-life EoL and no longer supported: EAMxxx prior to June 30, 2015, EMAxxx prior to January 31, 2014, EAMAxx prior to January 31, 2014, EMAAxx prior to January 31, 2014, and ESWAxx prior to January 31, 201...

Design/Logic Flaw

The IBM Security Access Manager appliance includes configuration files that contain obfuscated plaintext-passwords which authenticated users can access...

CVE-2015-5013

The IBM Security Access Manager appliance includes configuration files that contain obfuscated plaintext-passwords which authenticated users can access...

CVE-2015-5013

CVE-2015-5013 affects IBM Security Access Manager appliances where configuration files store obfuscated plaintext passwords that can be accessed by authenticated users (local exposure). IBM’s bulletin lists affected products and firmware ranges: Web 8.0.x (8.0.0.0–8.0.1.4) with upgrade to 8.0.1.5...

[SECURITY] Fedora 25 Update: openldap-2.4.44-7.fc25

OpenLDAP is an open source suite of LDAP Lightweight Directory Access Protocol applications and development tools. LDAP is a set of protocols for accessing directory services usually phone book style information, but other information is possible over the Internet, similar to the way DNS Domain...

mysql: general_log can write to configuration files, leading to privilege escalation (CPU Oct 2016)

It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server...

LocalTapiola: Multiple Vulnerabilities in Oracle Webcenter Sites (/cs/Satellite)

Issue The reporter found issues related to previous reports: 167453, 170532, 173563 and 176574. It was found to be possible to circumvent some of the protections that have been put in place earlier on to prevent access to protected resources within the Oracle Webcenter Sites application. The...

Zend Framework Configuration File Disclosure Vulnerability

Zend Framework ZF is the United States Zend company developed a set of open source PHP5 development framework , it is mainly used for the development of Web programs and services. Zend Framework has a configuration file disclosure vulnerability that can be exploited by an attacker to download...

Finecms Enterprise Edition Has Arbitrary File Download Vulnerability

FineCMS is a content management system based on PHP+MySql. An arbitrary file download vulnerability exists in Finecms Enterprise Edition. An attacker can exploit the vulnerability to directly download website configuration information or system files...

Scientific Linux Security Update : mariadb on SL7.x x86_64 (20161103)

The following packages have been upgraded to a newer upstream version: mariadb 5.5.52. Security Fixes : - It was discovered that the MariaDB logging functionality allowed writing to MariaDB configuration files. An administrative database user, or a database user with FILE privileges, could possib...

Moxa MiiNePort Session Hijacking Vulnerability

Moxa MiiNePort is an embedded device networking module from Moxa designed for manufacturers to connect serial devices to a network connection. A security vulnerability exists in Moxa MiiNePort. An attacker could use this vulnerability to brute-force decode session cookies and download configurati...

mysql: general_log can write to configuration files, leading to privilege escalation (CPU Oct 2016)

It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server...