150 matches found
The vulnerability of the HTTP(S) control module of the Hirschmann HiEOS operating system, which is used by Belden Hirschmann network switches, allows attackers to bypass the authentication process.
The vulnerability of the HTTPS control module of the Hirschmann HiEOS operating system, which is used by Belden Hirschmann network switches, relates to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass the authentication process through...
TitanNit Web Control 2.01 / Atemio 7600 - Root Remote Code Execution
!/usr/bin/env python -- coding: utf-8 -- TitanNit Web Control 2.01 / Atemio 7600 Root Remote Code Execution Vendor: AAF Digital HD Forum | Atelmo GmbH Product web page: http://www.aaf-digital.info | https://www.atemio.de Affected version: Firmware =2.01 Summary: The Atemio AM 520 HD Full HD...
Trellix Endpoint Security Cross-Site Scripting Vulnerability
Trellix Endpoint Security ENS is an endpoint security solution from FireEye Trellix USA. A cross-site scripting vulnerability exists in Trellix Endpoint Security ENS Web Control prior to version 10.7.0 Update 15, which originates from a cross-site scripting vulnerability that allows a remote...
CVE-2023-45674 SQL injection vulnerability in Farmbot-Web-App
Farmbot-Web-App is a web control interface for the Farmbot farm automation platform. An SQL injection vulnerability was found in FarmBot's web app that allows authenticated attackers to extract arbitrary data from its database including the user table. This issue may lead to Information Disclosur...
PT-2023-29042 · Unknown · Control Id Gerencia Web
Name of the Vulnerable Software and Affected Versions: Control iD Gerencia Web version 1.30 Description: A vulnerability was found in the component Cookie Handler, leading to cleartext storage of sensitive information. The attack may be launched remotely, with a rather high complexity and difficu...
CVE-2023-29707
Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...
CVE-2023-29707
Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...
Cross site scripting
Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...
PT-2023-22363 · Gbcom · Gbcom Lac Web Control Center
Name of the Vulnerable Software and Affected Versions: GBCOM LAC WEB Control Center version lac-1.3.x Description: The issue allows attackers to create an arbitrary device through a Cross Site Scripting XSS vulnerability. Recommendations: For GBCOM LAC WEB Control Center version lac-1.3.x, consid...
GBCOM LAC WEB Control Center 跨站脚本漏洞
GBCOM LAC WEB Control Center is a WEB Control Center from China Huanchuang GBCOM. A security vulnerability exists in the GBCOM LAC WEB Control Center lac-1.3.x version that could allow an attacker to create arbitrary devices...
CVE-2023-29707
CVE-2023-29707 concerns a cross-site scripting (XSS) vulnerability in the GBCOM LAC WEB Control Center, version lac-1.3.x. The available sources in the connected documents indicate that an attacker could leverage this flaw to create an arbitrary device. The CVE entry notes a CVSS v3.1 base score ...
CVE-2023-29707
Cross Site Scripting XSS vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows attackers to create an arbitrary device...
MiniDVBLinux 5.4 SVDRP Control
MiniDVBLinux 5.4 Simple VideoDiskRecorder Protocol SVDRP svdrpsend.sh Exploit Vendor: MiniDVBLinux Product web page: https://www.minidvblinux.de Affected version: =5.4 Summary: MiniDVBLinuxTM Distribution MLD. MLD offers a simple way to convert a standard PC into a Multi Media Centre based on the...
Dockerized-Android - A Container-Based Framework To Enable The Integration Of Mobile Components In Security Training Platforms
Dockerized Android is a container-based framework that allows to execute and Android Emulator inside Docker and control it through a browser. This project has been developed in order to provide a starting point for integrating mobile security components into Cyber Ranges but it can be used for an...
hestiacp 安全漏洞
hestiacp is a lightweight and powerful control panel for the modern web. A security vulnerability exists in hestiacp that stems from hestiacp's tendency to use incorrect operators in string comparisons...
ECOA Building Automation System - Local File Disclosure
Exploit Title: ECOA Building Automation System - Local File Disclosure Date: 25.06.2021 Exploit Author: Neurogenesia Vendor Homepage: http://www.ecoa.com.tw ECOA Building Automation System Local File Disclosure Vulnerability Vendor: ECOA Technologies Corp. Product web page: http://www.ecoa.com.tw...
ECOA Building Automation System Arbitrary File Deletion
ECOA Building Automation System Arbitrary File Deletion Vendor: ECOA Technologies Corp. Product web page: http://www.ecoa.com.tw Affected version: ECOA ECS Router Controller - ECS FLASH ECOA RiskBuster Terminator - E6L45 ECOA RiskBuster System - RB 3.0.0 ECOA RiskBuster System - TRANE 1.0 ECOA...
Christie Digital DWU850-GS 授权问题漏洞
The Christie Digital DWU850-GS is a laser projector from Christie. A security vulnerability in webctrl.cgi.elf in the firmware of the Christie Digital DWU850-GS version V06.46 can be exploited by an attacker to perform any desired action via a specially crafted query containing an unspecified...
COMMAX CVD-Axx DVR 5.1.4 - Weak Default Credentials Stream Disclosure
Exploit Title: COMMAX CVD-Axx DVR 5.1.4 - Weak Default Credentials Stream Disclosure Date: 02.08.2021 Exploit Author: LiquidWorm Vendor Homepage: https://www.commax.com COMMAX CVD-Axx DVR 5.1.4 Weak Default Credentials Stream Disclosure Vendor: COMMAX Co., Ltd. Prodcut web page:...
COMMAX CVD-Axx DVR 5.1.4 Weak Default Credentials Stream Disclosure
COMMAX CVD-Axx DVR 5.1.4 Weak Default Credentials Stream Disclosure Vendor: COMMAX Co., Ltd. Prodcut web page: https://www.commax.com Affected version: CVD-AH04 DVR 4.4.1 CVD-AF04 DVR 4.4.1 CVD-AH16 DVR 5.1.4 CVD-AF16 DVR 4.4.1 CVD-AF08 DVR 5.1.2 CVD-AH08 DVR 5.1.2 Summary: COMMAX offers a wide...