159 matches found
HEUR.Backdoor.Win32.Generic File Download
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/d7648b676dd139d1b7ba781816726510.txt Contact: [email protected] Media: twitter.com/malvuln Threat: HEUR.Backdoor.Win32.Generic Vulnerability: Unauthenticated Open Proxy Description: The backdoor...
Backdoor.Win32.Hupigon.das Unauthenticated Open Proxy
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/7afe56286039faf56d4184c476683340.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Hupigon.das Vulnerability: Unauthenticated Open Proxy Description: The malware drops ...
Mail.ru: ******.*****.my.com open proxy
A proxy host in my.com domain related to partner service located in external network was misconfigured as an open proxy...
CVE-2015-2947
KanColleViewer versions 3.8.1 and earlier operates as an open proxy which allows remote attackers to trigger outbound network traffic...
Open redirect
KanColleViewer versions 3.8.1 and earlier operates as an open proxy which allows remote attackers to trigger outbound network traffic...
CVE-2015-2947
CVE-2015-2947 affects KanColleViewer up to version 3.8.1, which operates as an open proxy that can trigger outbound network traffic. The vulnerability exists in the application’s proxy behavior, enabling remote attackers to cause outbound connections. The NVD metrics indicate network-accessible i...
CVE-2015-2947
KanColleViewer versions 3.8.1 and earlier operates as an open proxy which allows remote attackers to trigger outbound network traffic...
CVE-2015-1000009
Open proxy in Wordpress plugin google-adsense-and-hotel-booking v1.05...
CVE-2015-1000002
Open Proxy in filedownload v1.4 wordpress plugin...
CVE-2015-1000002
The CVE-2015-1000002 entry concerns the WordPress FileDownload plugin (version 1.4). Connected sources indicate multiple issues tied to FileDownload
CVE-2015-1000009
CVE-2015-1000009 affects the WordPress plugin google-adsense-and-hotel-booking version 1.05, specifically the proxy.php script. The vulnerability results in an open proxy/post proxy capability, allowing an attacker to proxy POST requests through the host site, potentially aiding attack concealmen...
CVE-2015-1000002
Open Proxy in filedownload v1.4 wordpress plugin...
CVE-2015-1000009
Open proxy in Wordpress plugin google-adsense-and-hotel-booking v1.05...
CVE-2016-5673
UltraVNC Repeater before 1300 does not restrict destination IP addresses or TCP ports, which allows remote attackers to obtain open-proxy functionality by using a :: substring in between the IP address and port number...
CVE-2016-5673
UltraVNC Repeater before 1300 does not restrict destination IP addresses or TCP ports, which allows remote attackers to obtain open-proxy functionality by using a :: substring in between the IP address and port number...
Open redirect
UltraVNC Repeater before 1300 does not restrict destination IP addresses or TCP ports, which allows remote attackers to obtain open-proxy functionality by using a :: substring in between the IP address and port number...
CVE-2016-5673
CVE-2016-5673 affects UltraVNC Repeater prior to 1300, which does not restrict destination IP addresses or TCP ports. This allows a remote attacker to induce the repeater (acting as a proxy) to open connections to arbitrary hosts/ports, e.g., exploiting a :: substring between IP and port. The vul...
CVE-2016-5673
UltraVNC Repeater before 1300 does not restrict destination IP addresses or TCP ports, which allows remote attackers to obtain open-proxy functionality by using a :: substring in between the IP address and port number...
CVE-2015-7793
Corega CG-WLBARAGM devices provide an open proxy service, which allows remote attackers to trigger outbound network traffic via unspecified vectors...
Design/Logic Flaw
Corega CG-WLBARAGM devices provide an open proxy service, which allows remote attackers to trigger outbound network traffic via unspecified vectors...