13 matches found
WatchGuard Hexis HawkEye G Cross-Site Request Forgery Vulnerability
WatchGuard Hexis HawkEye G is a network communications security solution from WatchGuard USA. A cross-site request forgery vulnerability exists in WatchGuard Hexis HawkEye G version 3.0.1.4912. A remote attacker can exploit this vulnerability to perform unauthorized actions, including adding...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in Hexis HawkEye G 3.0.1.4912 allow remote attackers to hijack the authentication of administrators for requests that 1 add arbitrary accounts via the name parameter to interface/rest/accounts/json; turn off the 2 Url matching, 3 DNS Inject...
CVE-2015-2878
Multiple cross-site request forgery CSRF vulnerabilities in Hexis HawkEye G 3.0.1.4912 allow remote attackers to hijack the authentication of administrators for requests that 1 add arbitrary accounts via the name parameter to interface/rest/accounts/json; turn off the 2 Url matching, 3 DNS Inject...
CVE-2015-2878
The CVE-2015-2878 entry concerns Hexis HawkEye G 3.0.1.4912, where multiple CSRF vulnerabilities exist that let an attacker hijack administrator sessions to perform actions such as adding arbitrary accounts, turning off sensors (Url matching, DNS Inject, IP Redirect), and whitelisting malware MD5...
Hawkeye-G XSS
Crossite scripting in web interface...
Hawkeye-G v3.0.1 Persistent XSS & Information Leakage
Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-HAWKEYEG0725.txt Vendor: ================================ www.hexiscyber.com Product: ================================ Hawkeye-G v3.0.1.4912 Hawkeye G is an active defense...
Hawkeye-G 3.0.1.4912 - Persistent Cross-Site Scripting Information Leakage
Hawkeye-G 3.0.1.4912 - Persistent Cross-Site Scripting Information Leakage Exploit Title: Persistent XSS, Information Leakage IDS / IPS Google Dork: intitle: Persistent XSS, Information Leakage IDS / IPS Date: 2015-07-25 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor...
Hawkeye-G 3.0.1.4912 Cross Site Scripting / Information Leakage
Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-HAWKEYEG0725.txt Vendor: ================================ www.hexiscyber.com Product: ================================ Hawkeye-G v3.0.1.4912 Hawkeye G is an active defense...
Hawkeye-G 3.0.1.4912 - Persistent Cross-Site Scripting / Information Leakage
Exploit Title: Persistent XSS, Information Leakage IDS / IPS Google Dork: intitle: Persistent XSS, Information Leakage IDS / IPS Date: 2015-07-25 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor Homepage: www.hexiscyber.com Software Link:...
Hawkeye-G v3.0.1.4912 CSRF Vulnerability
Exploit for php platform in category web applications Exploit Title: CSRF, Network Threat Appliance IDS / IPS Google Dork: intitle: CSRF Network Threat Appliance IDS / IPS Date: 2015-07-24 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor Homepage: www.hexiscyber.com...
Hawkeye-G 3.0.1.4912 Cross Site Request Forgery
Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-HAWKEYEG0724.txt Vulnerability Type: =================== CSRF CVE Reference: ============== CVE-2015-2878 Vendor: =================== www.hexiscyber.com Product:...
Hawkeye-G 3.0.1.4912 - Cross-Site Request Forgery
Hawkeye-G 3.0.1.4912 - Cross-Site Request Forgery Exploit Title: CSRF, Network Threat Appliance IDS / IPS Google Dork: intitle: CSRF Network Threat Appliance IDS / IPS Date: 2015-07-24 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor Homepage: www.hexiscyber.com Softwa...
Hawkeye-G 3.0.1.4912 - Cross-Site Request Forgery
Exploit Title: CSRF, Network Threat Appliance IDS / IPS Google Dork: intitle: CSRF Network Threat Appliance IDS / IPS Date: 2015-07-24 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor Homepage: www.hexiscyber.com Software Link: www.hexiscyber.com/products/hawkeye-g...