EUVD-2020-3843

Malware in sbrugna...

EUVD-2019-16845

Malware in sbrugna...

EUVD-2020-3844

Malware in sbrugna...

CVE-2012-10039

ZEN Load Balancer versions 2.0 and 3.0-rc1 contain a command injection vulnerability in content2-2.cgi. The filelog parameter is passed directly into a backtick-delimited exec call without sanitation. An authenticated attacker can inject arbitrary shell commands, resulting in remote code executio...

CVE-2012-10039

CVE-2012-10039 affects ZEN Load Balancer versions 2.0 and 3.0-rc1. A command injection exists in content2-2.cgi where the filelog parameter is passed directly to a backtick-delimited exec() call without sanitization, allowing an authenticated attacker to execute arbitrary shell commands and achie...

CVE-2012-10039 ZEN Load Balancer Filelog Command Execution

ZEN Load Balancer versions 2.0 and 3.0-rc1 contain a command injection vulnerability in content2-2.cgi. The filelog parameter is passed directly into a backtick-delimited exec call without sanitation. An authenticated attacker can inject arbitrary shell commands, resulting in remote code executio...

CVE-2012-10039 ZEN Load Balancer Filelog Command Execution

ZEN Load Balancer versions 2.0 and 3.0-rc1 contain a command injection vulnerability in content2-2.cgi. The filelog parameter is passed directly into a backtick-delimited exec call without sanitation. An authenticated attacker can inject arbitrary shell commands, resulting in remote code executio...

PT-2025-32552 · Unknown +1 · Zen Load Balancer +2

Name of the Vulnerable Software and Affected Versions: ZEN Load Balancer versions 2.0 ZEN Load Balancer version 3.0-rc1 Description: ZEN Load Balancer versions 2.0 and 3.0-rc1 contain a command injection issue in the content2-2.cgi file. The filelog parameter is passed directly to an exec call...

Zevenet Zen Load Balancer 安全漏洞

Zevenet Zen Load Balancer is an application delivery controller from Zevenet, Spain. A security vulnerability exists in Zevenet Zen Load Balancer version 2.0 and 3.0-rc1, which stems from an unvalidated filelog parameter being passed directly to the exec function, which could lead to remote code...

CVE-2020-11491

Monitoring::Logs in Zen Load Balancer 3.10.1 allows remote authenticated admins to conduct absolute path traversal attacks, as demonstrated by a filelog=/etc/shadow request to index.cgi...

CVE-2020-11490

Manage::Certificates in Zen Load Balancer 3.10.1 allows remote authenticated admins to execute arbitrary OS commands via shell metacharacters in the index.cgi certissuer, certdivision, certorganization, certlocality, certstate, certcountry, or certemail parameter...

Zen Load Balancer Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Zen Load Balancer Directory Traversal', 'Description' = %q This module exploits a authenticated directory traversal vulnerability in Zen Load...

Zen Load Balancer Remote Code Execution (CVE-2019-7301)

A remote code execution vulnerability exists in Zen Load Balancer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Zen Load Balancer 3.10.1 - Directory Traversal (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Zen Load Balancer Directory Traversal", 'Description' = %q This module exploits a authenticated directory traversal vulnerability in Zen Load...

Zen Load Balancer 3.10.1 - Directory Traversal Exploit

Exploit for cgi platform in category web applications This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Zen Load Balancer Directory Traversal", 'Description' = %q This module exploits a...

Zen Load Balancer 3.10.1 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Zen Load Balancer Directory Traversal", 'Description' = %q This module exploits a authenticated directory traversal vulnerability in Zen Load...

CVE-2020-11491

creationtimestamp| type| source ---|---|--- 2020-04-16 16:13:04+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/zenloadbalancertraversal.rb 2025-10-23 21:12:58+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...

Zen Load Balancer 'index.cgi' Directory Traversal Vulnerability

Zen Load Balancer is a complete load balancing solution that provides high availability for TCP, UDP, advanced HTTP and HTTPS services, and data line communications uplinks. A directory traversal vulnerability exists in Zen Load Balancer 'index.cgi'. An attacker can exploit the vulnerability to...

Zen Load Balancer Directory Traversal

This module exploits a authenticated directory traversal vulnerability in Zen Load Balancer v3.10.1. The flaw exists in 'index.cgi' not properly handling 'filelog=' parameter which allows a malicious actor to load arbitrary file path. This module requires Metasploit: https://metasploit.com/downlo...

Zen Load Balancer 3.10.1 - (index.cgi) Directory Traversal Exploit

Exploit for cgi platform in category web applications Exploit Title: Zen Load Balancer 3.10.1 - 'index.cgi' Directory Traversal Exploit Author: Basim Alabdullah Software Link: https://sourceforge.net/projects/zenloadbalancer/files/Distro/zenloadbalancer-distro3.10.1.iso/download Version: 3.10.1...