PT-2025-49573

In multiple functions of WifiScanModeActivity.java, there is a possible way to bypass a device config restriction due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

EUVD-2025-48940

Combodo iTop is a web based IT service management tool. In versions prior to 2.7.13 and 3.2.2, an administrator can, by editing the configuration of the iTop instance, execute code on the server. Versions 2.7.13 and 3.2.2 escape and check the config parameter before executing a command based on i...

VulnCheck KEV: CVE-2023-31446

In Cassia Gateway firmware XC10002.1.1.2303082218 and XC20002.1.1.2303090947, the queueUrl parameter in /bypass/config is not sanitized. This leads to injecting Bash code and executing it with root privileges on device startup...

The vulnerability of the corporate Bluetooth gateway Cassia X1000 allows a intruder to execute arbitrary code.

The vulnerability of the corporate Bluetooth gateway Cassia X1000 is related to the lack of measures taken to secure data at the management level. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with root privileges using the queueUrl parameter in /bypass/conf...

CVE-2023-31446

In Cassia Gateway firmware XC10002.1.1.2303082218 and XC20002.1.1.2303090947, the queueUrl parameter in /bypass/config is not sanitized. This leads to injecting Bash code and executing it with root privileges on device startup...

Code injection

In Cassia Gateway firmware XC10002.1.1.2303082218 and XC20002.1.1.2303090947, the queueUrl parameter in /bypass/config is not sanitized. This leads to injecting Bash code and executing it with root privileges on device startup...

PT-2024-1049 · Cassia · Cassia Gateway Firmware Xc2000 +1

Name of the Vulnerable Software and Affected Versions: Cassia Gateway firmware XC1000 2.1.1.2303082218 Cassia Gateway firmware XC2000 2.1.1.2303090947 Description: The issue is related to the queueUrl parameter in the "/bypass/config" API endpoint, which is not properly sanitized. This allows for...

OraMon 2.0.1 Remote Config File Disclosure Vulnerability

No description provided by source. ........................ .............................................. +++++Bypass Config Download Vulnerability+++++ ............................................... script:Oramon = Oracle Database Monitoring...

OraMon 2.0.1 - Remote Configuration File Disclosure

OraMon 2.0.1 - Remote Configuration File Disclosure ........................ .............................................. +++++Bypass Config Download Vulnerability+++++ ............................................... script:Oramon = Oracle Database Monitoring...

mxCamArchive 2.2 Bypass Config Download Vulnerability

Exploit for unknown platform in category web applications ===================================================== mxCamArchive 2.2 Bypass Config Download Vulnerability ===================================================== Bypass Config Download Vulnerability script: mxcamarchive 2.2 download...

mxCamArchive 2.2 Bypass Config Download Vulnerability

No description provided by source. Bypass Config Download Vulnerability script: mxcamarchive 2.2 download from:http://www.infireal.com/media/serve/106/mxcamarchive2.2.zip ........................................................................... expl: http://site.com/path/archive/config.ini and...