Lucene search
K

4 matches found

exploitpack
exploitpack
added 2017/03/08 12:0 a.m.64 views

ASUSWRT RT-AC53 (3.0.0.4.380.6038) - Cross-Site Scripting

ASUSWRT RT-AC53 3.0.0.4.380.6038 - Cross-Site Scripting Cross-Site Scripting XSS Component: httpd CVE: CVE-2017-6547 Vulnerability: httpd checks in the function handlerequest if the requested file name is longer than 50 chars. It then responds with a redirection which allows an attacker to inject...

4.3CVSS0.01701EPSS
Exploits5
exploitpack
exploitpack
added 2017/03/08 12:0 a.m.69 views

ASUSWRT RT-AC53 (3.0.0.4.380.6038) - Session Stealing

ASUSWRT RT-AC53 3.0.0.4.380.6038 - Session Stealing Session Stealing Component: httpd CVE: CVE-2017-6549 Vulnerability: httpd uses the function searchtokeninlist to validate if a user is logged into the admin interface by checking his asustoken value. There seems to be a branch which could be a...

9.3CVSS8.9AI score0.07552EPSS
Exploits6
Exploit DB
Exploit DB
added 2017/03/08 12:0 a.m.53 views

ASUSWRT RT-AC53 (3.0.0.4.380.6038) - Session Stealing

Session Stealing Component: httpd CVE: CVE-2017-6549 Vulnerability: httpd uses the function searchtokeninlist to validate if a user is logged into the admin interface by checking his asustoken value. There seems to be a branch which could be a failed attempt to build in a logout functionality...

9.3CVSS8.8AI score0.07552EPSS
Exploits6
Exploit DB
Exploit DB
added 2017/03/08 12:0 a.m.128 views

ASUSWRT RT-AC53 (3.0.0.4.380.6038) - Remote Code Execution

Remote Code Execution Component: networkmap CVE: CVE-2017-6548 networkmap is responsible for generating a map of computers connected to the router. It continuously monitors the LAN to detect ARP requests submitted by unknown computers. When a new MAC address appears it will probe the related IP...

10CVSS9.7AI score0.21342EPSS
Exploits4
Rows per page
Query Builder