CVE-2020-25036

UCOPIA Wi-Fi appliances 6.0.5 allow authenticated remote attackers to escape the restricted administration shell CLI, and access a shell with admin user rights, via an unprotected less command...

Macally WIFISD2-2A82 2.000.010 Privilege Escalation

Exploit Title: Macally WIFISD2-2A82 2.000.010 - Guest to Root Privilege Escalation Date: 03.12.2020 Exploit Author: Maximilian Barz and Daniel Schwendner Vendor Homepage: https://us.macally.com/products/wifisd2 Version: 2.000.010 Tested on: Kali Linux 5.7.0-kali1-amd64 CVE : CVE-2020-29669...

PT-2020-13061 · Riverbed · Edgeconnect Appliance

Name of the Vulnerable Software and Affected Versions: EdgeConnect appliance affected versions not specified Description: The issue allows an admin user with shell access to retrieve IPSec UDP key material from both machine-to-machine interfaces and human-accessible interfaces. This material can...

CVE-2017-17743

Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11 allows authenticated remote attackers to escape the shell and escalate their privileges by uploading a .bashrc file containing th...

Cisco ESA and Content SMA Elevation of Privilege Vulnerabilities

Cisco Email Security Appliances ESAs are email security gateway products designed to detect and block a variety of email-borne threats, such as malware, spam, and phishing attacks.The Cisco Content Security Management Appliance SMA centralizes multiple Cisco email and network security appliances'...

CVE-2017-6526

An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is vulnerable to unauthenticated command execution through an improperly protected administrative web shell cgi-bin/dna/sysAdmin.cgi POST requests...

QNAP admin shell via Bash Environment Variable Code Injection Exploit

Exploit for hardware platform in category remote exploits Exploit Title: QNAP admin shell via Bash Environment Variable Code Injection Date: 7 February 2015 Exploit Author: Patrick Pellegrino | email protected work / email protected other Employer homepage: http://www.securegroup.it Vendor...

QNAP - Admin Shell via Bash Environment Variable Code Injection (Metasploit)

QNAP - Admin Shell via Bash Environment Variable Code Injection Metasploit Exploit Title: QNAP admin shell via Bash Environment Variable Code Injection Date: 7 February 2015 Exploit Author: Patrick Pellegrino | [email protected] work /...

QNAP - Admin Shell via Bash Environment Variable Code Injection (Metasploit)

Exploit Title: QNAP admin shell via Bash Environment Variable Code Injection Date: 7 February 2015 Exploit Author: Patrick Pellegrino | [email protected] work / [email protected] other Employer homepage: http://www.securegroup.it Vendor...

Eircom Netopia Router Backdoor

++++++++++++++++++++ FULL DISCLOSURE OF EIRCOM NETOPIA ROUTER BACKDOOR VULNERABILITY! Yes, failcom suck, and they did it again. DERP! They gave us a nice TELNET shell into their routers, and now we can mess about 'cos it spawns a root shell by magic! and magic is the actual command! They also lef...

TR News 2.1 - 'nb' SQL Injection

Discovered by : His0k4 Algerian HaCker Email : His0k4.hlmatgmaildotcom Greetz to: All Dz & muslims HaCkeRs : Special Greetz:c02,Spym4n,THe-MooRiSH Script : Tr Script News v2.1 Download script : http://www.easy-script.com/scripts-dl/trscript-21.zip Dork : inurl:news.php?mode=voir Vulnerable file :...