Reolink Rlc-410W 输入验证错误漏洞

Reolink Rlc-410W is a Wifi security camera from Reolink China.A security vulnerability exists in Reolink RLC-410W, which can be exploited by attackers to cause a reboot via a crafted HTTP request...

TotoLink X5000R 操作系统命令注入漏洞

Totolink X5000R is a router from China's Gion Electronics Totolink. The TOTOLINK X5000R router suffers from an operating system command injection vulnerability that can be exploited by an attacker to execute arbitrary operating system commands by sending a modified HTTP request...

RDK WebUI Component Access Control Error Vulnerability

RDK Management RDK is a modular, portable, and customizable open source IoT software solution from the RDK Management community. An access control error vulnerability exists in the actionHandlerUtility.php file of the WebUI component in version RDK RDKB-20181217-1. An attacker can exploit the...

CA Workload Control Center Arbitrary Code Execution Vulnerability

CA Workload Control Center is the GUI for CA Workload Automation AE. An arbitrary code execution vulnerability exists in CA Workload Control Center. A remote attacker could exploit this vulnerability to execute arbitrary code via a specially crafted HTTP request...

Bitpay/insight-api Insight-api transaction broadcast endpoint input validation vulnerability

Bitpay/insight-api Insight-api is a Bitpay payment software program that uses Bitcoin. transaction broadcast endpoint is one of the payment terminals. An input validation vulnerability exists in the transaction broadcast endpoint in Bitpay/insight-api Insight-api version 5.0.0 and earlier. An...

CVE-2018-0096

A vulnerability in the role-based access control RBAC functionality of Cisco Prime Infrastructure could allow an authenticated, remote attacker to perform a privilege escalation in which one virtual domain user can view and modify another virtual domain configuration. The vulnerability is due to ...

Seanox DevWex Windows Binary 1.2002.520 - File Disclosure

Seanox DevWex Windows Binary 1.2002.520 - File Disclosure source: https://www.securityfocus.com/bid/4978/info The Seanox DevWex Windows binary version is prone to an issue which may cause arbitrary web-readable files to be disclosed to remote attackers. This problem occurs because DevWex does not...

PHProjekt 2.x3.x - Authentication Bypass

PHProjekt 2.x3.x - Authentication Bypass source: https://www.securityfocus.com/bid/4596/info PHProjekt is a freely available, open source PHP Groupware package. It is actively maintained by the PHPProjekt Development Team. It will run on most Linux and Unix variants, in addition to Microsoft...

GNUJSP 1.0 - File Disclosure

source: https://www.securityfocus.com/bid/4125/info GNUJSP is a freely available, open-source implementation of Sun's Java Server Pages. It will run on most Unix and Linux variants, as well as Microsoft Windows NT/2000 operating systems. It has been reported that a remote attacker may disclose th...