36 matches found
CVE-2018-18864
Loadbalancer.org Enterprise VA MAX before 8.3.3 has XSS because Apache HTTP Server logs are displayed...
Loadbalancer.org Enterprise VA MAX Cross Site Scripting
Title: Loadbalancer.org Enterprise VA MAX - Unauthenticated Stored XSS Author: Jakub Palaczynski Date: 24. July 2018 CVE: CVE-2018-18864 Affected product: ============= Loadbalancer.org Enterprise VA MAX before 8.3.3 Impact: ====== Remote Code Execution with root privileges. Vulnerability -...
Loadbalancer.org Enterprise VA MAX 8.3.2 Remote Code Execution
Exploit Title: Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution Date: 2018-07-24 Exploit Authors: Jakub Palaczynski Vendor Homepage: https://www.loadbalancer.org/ Version: . Such JavaScript is stored in "Apache User Log". This way attacker can store JavaScript code that can for...
Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution
Exploit Title: Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution Date: 2018-07-24 Exploit Authors: Jakub Palaczynski Vendor Homepage: https://www.loadbalancer.org/ Version: . Such JavaScript is stored in "Apache User Log". This way attacker can store JavaScript code that can for...
Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution
Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution Exploit Title: Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution Date: 2018-07-24 Exploit Authors: Jakub Palaczynski Vendor Homepage: https://www.loadbalancer.org/ Version: . Such JavaScript is stored in "Apache User...
Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution Exploit
Exploit for php platform in category web applications Exploit Title: Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution Exploit Authors: Jakub Palaczynski Vendor Homepage: https://www.loadbalancer.org/ Version: . Such JavaScript is stored in "Apache User Log". This way attacker can...
loadbalancer.org XSS vulnerability
Vulnerable URL: https://www.loadbalancer.org/blog/black-friday-black-out-protection-with-haproxy/%22%27%2D%2D%21 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 31.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 476615 VIP website...
Loadbalancer.org Enterprise VA 7.5.2 - Static SSH Key
No description provided by source. ----------- Author: ----------- xistence xistenceat0x90.nl ------------------------- Affected products: ------------------------- Loadbalancer.org Enterprise VA 7.5.2 and below ------------------------- Affected vendors: ------------------------- Loadbalancer.or...
Loadbalancer Enterprise VA静态SSH密钥安全绕过漏洞
Bugtraq ID:66268 Loadbalancer Enterprise VA是一个负载均衡应用设备。 Loadbalancer Enterprise VA设备存在静态公钥和私钥,当密钥重生成后,没有把公钥从authorizedkeys2文件中删除,允许任意用户使用默认私钥访问。 0 Loadbalancer Enterprise VA 7.5.2 Loadbalancer Enterprise VA 7.5.3已经修复该漏洞,建议用户下载更新: http://www.loadbalancer.org/...
Loadbalancer.org Enterprise VA 7.5.2 - Static SSH Key
Loadbalancer.org Enterprise VA 7.5.2 - Static SSH Key ----------- Author: ----------- xistence ------------------------- Affected products: ------------------------- Loadbalancer.org Enterprise VA 7.5.2 and below ------------------------- Affected vendors: ------------------------- Loadbalancer.o...
Loadbalancer.org Enterprise VA 7.5.2 - Static SSH Key Vulnerability
The Loadbalancer.org Virtual Appliance is a revolution in software load balancing. The software is simple to install on Windows, Mac & Linux and does not have any adverse effects on the host operating system. Details: ---------- 0x01 - SSH Private Key Loadbalancer.org Enterprise VA 7.5.2 contains...
Loadbalancer.org Enterprise VA SSH Private Key Exposure
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'net/ssh' class Metasploit3 'Loadbalancer.org Enterprise VA SSH Private Key Exposure', 'Description' = %q Loadbalancer.org ships a public/privat...
Loadbalancer.org Enterprise VA 7.5.2 - Static SSH Key
----------- Author: ----------- xistence ------------------------- Affected products: ------------------------- Loadbalancer.org Enterprise VA 7.5.2 and below ------------------------- Affected vendors: ------------------------- Loadbalancer.org http://www.loadbalancer.org/...
Loadbalancer.org Enterprise VA 7.5.2 Static SSH Key
Loadbalancer.org Enterprise VA 7.5.2 contains a default SSH private key. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Loadbalancer.org Enterprise VA SSH Private Key Exposure
Loadbalancer.org ships a public/private key pair on Enterprise virtual appliances version 7.5.2 that allows passwordless authentication to any other LB Enterprise box. Since the key is easily retrievable, an attacker can use it to gain unauthorized remote access as root. This module requires...
Loadbalancer.org Enterprise VA 7.5.2 Static SSH Key
----------- Author: ----------- xistence ------------------------- Affected products: ------------------------- Loadbalancer.org Enterprise VA 7.5.2 and below ------------------------- Affected vendors: ------------------------- Loadbalancer.org http://www.loadbalancer.org/...