Lucene search
+L

67 matches found

Metasploit
Metasploit
added 2023/01/05 7:49 p.m.473 views

Linear eMerge E3-Series Access Controller Command Injection

This module exploits a command injection vulnerability in the Linear eMerge E3-Series Access Controller. The Linear eMerge E3 versions 1.00-06 and below are vulnerable to unauthenticated command injection in cardscandecoder.php via the No and door HTTP GET parameter. Successful exploitation resul...

10CVSS9.7AI score0.97136EPSS
Exploits16
ICS
ICS
added 2022/05/24 12:0 a.m.80 views

Matrikon OPC Server

1. EXECUTIVE SUMMARY CVSS v3 5.8 ATTENTION: Exploitable remotely Vendor: Matrikon, a subsidiary of Honeywell Equipment: Matrikon OPC Server Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to achieve remote command...

9CVSS7.7AI score0.00619EPSS
Exploits0References5
ICS
ICS
added 2020/07/30 12:0 a.m.448 views

ICSA-20-212-02_Mitsubishi Electric Multiple Factory Automation Engineering Software Products (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.3 ATTENTION: Exploitable remotely Vendor: Mitsubishi Electric Equipment: Mitsubishi Electric, Multiple Factory Automation Engineering Software products Vulnerability: Permission Issues 2. UPDATE INFORMATION This updated advisory is a follow-up to the advisory update...

9.8CVSS9.3AI score0.00883EPSS
Exploits0References2
ICS
ICS
added 2019/12/03 12:0 a.m.59 views

Reliable Controls LicenseManager

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: Reliable Controls Equipment: LicenseManager Vulnerability: Unquoted Search Path or Element 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to crash the system, view sensitive...

7.8CVSS7.8AI score0.004EPSS
Exploits0References5
exploitpack
exploitpack
added 2019/11/13 12:0 a.m.75 views

Linear eMerge E3 1.00-06 - Remote Code Execution

Linear eMerge E3 1.00-06 - Remote Code Execution Title: Linear eMerge E3 1.00-06 - Remote Code Execution Author: LiquidWorm Date: 2019-11-13 Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Affected version: =2.3.0a...

10CVSS0.4AI score0.97136EPSS
Exploits16
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.68 views

eMerge E3 1.00-06 - layout Reflected Cross-Site Scripting

eMerge E3 1.00-06 - layout Reflected Cross-Site Scripting Exploit Title: eMerge E3 1.00-06 - 'layout' Reflected Cross-Site Scripting Google Dork: NA Date: 2018-11-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link:...

4.3CVSS0.55807EPSS
Exploits5
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.110 views

eMerge50P 5000P 4.6.07 - Remote Code Execution

eMerge50P 5000P 4.6.07 - Remote Code Execution Exploit Title: eMerge50P 5000P 4.6.07 - Remote Code Execution Google Dork: NA Date: 2018-11-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series...

10CVSS9.8AI score0.40005EPSS
Exploits7
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.109 views

CBAS-Web 19.0.0 - Cross-Site Request Forgery (Add Super Admin)

CBAS-Web 19.0.0 - Cross-Site Request Forgery Add Super Admin Exploit Title: CBAS-Web 19.0.0 - Cross-Site Request Forgery Add Super Admin Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link:...

6.8CVSS0.3AI score0.0242EPSS
Exploits4
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.94 views

eMerge E3 1.00-06 - Privilege Escalation

eMerge E3 1.00-06 - Privilege Escalation Exploit Title: eMerge E3 1.00-06 - Privilege Escalation Google Dork: NA Date: 2018-09-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Version:...

9CVSS0.8AI score0.82036EPSS
Exploits10
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.114 views

CBAS-Web 19.0.0 - Remote Code Execution

CBAS-Web 19.0.0 - Remote Code Execution Exploit Title: CBAS-Web 19.0.0 - Remote Code Execution Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/...

9CVSS7.5AI score0.02991EPSS
Exploits4
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.99 views

Prima Access Control 2.3.35 - HwName Persistent Cross-Site Scripting

Prima Access Control 2.3.35 - HwName Persistent Cross-Site Scripting Exploit Title: Prima Access Control 2.3.35 - 'HwName' Persistent Cross-Site Scripting Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link:...

3.5CVSS8.8AI score0.08256EPSS
Exploits5
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.86 views

Optergy 2.3.0a - Remote Code Execution

Optergy 2.3.0a - Remote Code Execution Title: Optergy 2.3.0a - Remote Code Execution Author: LiquidWorm Date: 2019-11-05 Vendor: https://optergy.com/ Product web page: https://optergy.com/products/ Affected version: =2.3.0a Advisory: https://applied-risk.com/resources/ar-2019-008 Paper:...

10CVSS9.9AI score0.29043EPSS
Exploits5
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.80 views

Optergy 2.3.0a - Cross-Site Request Forgery (Add Admin)

Optergy 2.3.0a - Cross-Site Request Forgery Add Admin Title: Optergy 2.3.0a - Cross-Site Request Forgery Add Admin Author: LiquidWorm Date: 2019-11-05 Vendor: https://optergy.com/ Product web page: https://optergy.com/products/ Affected version: history.pushState'', '', '/' input type="hidden"...

6.8CVSS0.8AI score0.04476EPSS
Exploits4
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.80 views

Optergy 2.3.0a - Username Disclosure

Optergy 2.3.0a - Username Disclosure Title: Optergy 2.3.0a - Username Disclosure Author: LiquidWorm Date: 2019-11-05 Vendor: https://optergy.com/ Product web page: https://optergy.com/products/ Affected version: djuro teppi view alerton stef humba drmio de3 andri myko dzonka kosto beebee...

5CVSS5.8AI score0.10469EPSS
Exploits5
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.113 views

Prima Access Control 2.3.35 - Arbitrary File Upload

Prima Access Control 2.3.35 - Arbitrary File Upload Exploit Title: Prima Access Control 2.3.35 - Arbitrary File Upload Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link:...

9CVSS0.5AI score0.1163EPSS
Exploits7
Packet Storm
Packet Storm
added 2019/11/12 12:0 a.m.97 views

Optergy BMS 2.0.3a Remote Root

!/usr/bin/env python Unauthenticated Remote Root Exploit in Optergy BMS Console Backdoor Affected version \n' sys.exit while True: challengeurl = 'http://'+sys.argv1+'/tools/ajax/ConsoleResult.html?get' try: req1 = requests.getchallengeurl getchallenge = json.loadsreq1.text challenge =...

10CVSS9.6AI score0.93384EPSS
Exploits7
Packet Storm
Packet Storm
added 2019/11/12 12:0 a.m.244 views

Optergy Proton/Enterprise BMS 2.0.3a Cross Site Request Forgery

Optergy Proton/Enterprise BMS CSRF Add Admin Affected version: history.pushState'', '', '/' input type="hidden" name="user.visibleAlarms" value...

6.8CVSS0.6AI score0.04476EPSS
Exploits4
Packet Storm
Packet Storm
added 2019/11/12 12:0 a.m.118 views

Optergy 2.3.0a Remote Root

!/usr/bin/env python -- coding: utf8 -- Authenticated File Upload in Optergy gaining Remote Root Code Execution Firmware version: =2.3.0a CVE: CVE-2019-7274 Advisory: https://applied-risk.com/resources/ar-2019-008 Paper: https://applied-risk.com/resources/i-own-your-building-management-system...

10CVSS0.29043EPSS
Exploits5
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.108 views

CBAS-Web 19.0.0 - Information Disclosure

CBAS-Web 19.0.0 - Information Disclosure Exploit Title: CBAS-Web 19.0.0 - Information Disclosure Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/...

5CVSS6.7AI score0.09012EPSS
Exploits4
Packet Storm
Packet Storm
added 2019/11/12 12:0 a.m.143 views

Computrols CBAS-Web 19.0.0 Information Disclosure

Computrols CBAS-Web Information Disclosure Affected versions: 19.0.0 and below CVE: CVE-2019-10849 Advisory: https://applied-risk.com/resources/ar-2019-009 Paper: https://applied-risk.com/resources/i-own-your-building-management-system by Gjoko 'LiquidWorm' Krstic $ curl -s...

5CVSS6.9AI score0.09012EPSS
Exploits4
Rows per page
Query Builder