EyesOfNetwork - Hardcoded API Key

An issue was discovered in EyesOfNetwork 5.3. The installation uses the same API key hardcoded as EONAPIKEY in include/apifunctions.php for API version 2.4.2 by default for all installations, hence allowing an attacker to calculate/guess the admin access token. id: CVE-2020-8657 info: name:...

EyesOfNetwork - Hardcoded API Key & SQL Injection

An issue was discovered in EyesOfNetwork 5.3. The EyesOfNetwork API 2.4.2 is prone to SQL injection, allowing an unauthenticated attacker to perform various tasks such as authentication bypass via the username field to getApiKey in include/apifunctions.php. id: CVE-2020-8656 info: name:...

EyesOfNetwork 5.1-5.3 - SQL Injection/Remote Code Execution

EyesOfNetwork 5.1 to 5.3 contains SQL injection and remote code execution vulnerabilities. An attacker can possibly obtain sensitive information from a database, modify data, and execute unauthorized administrative operations in the context of the affected site. See also CVE-2020-8655,...

VulnCheck KEV: CVE-2020-8656

An issue was discovered in EyesOfNetwork 5.3. The EyesOfNetwork API 2.4.2 is prone to SQL injection, allowing an unauthenticated attacker to perform various tasks such as authentication bypass via the username field to getApiKey in include/apifunctions.php...

EUVD-2017-5630

Malware in sbrugna...

EUVD-2017-7416

Malware in sbrugna...

EUVD-2020-20379

Malware in sbrugna...

EUVD-2017-5295

Malware in sbrugna...

EUVD-2020-20380

Malware in sbrugna...

EUVD-2021-20217

Malware in sbrugna...

EUVD-2017-5907

Malware in sbrugna...

EUVD-2017-6460

Malware in sbrugna...

EUVD-2017-5755

Malware in sbrugna...

EUVD-2017-6648

Malware in sbrugna...

EUVD-2017-6461

Malware in sbrugna...

EUVD-2017-7349

Malware in sbrugna...

EUVD-2017-6248

Malware in sbrugna...

EUVD-2017-5906

Malware in sbrugna...

EUVD-2017-5908

Malware in sbrugna...

EUVD-2017-5751

Malware in sbrugna...