EUVD-2021-14158

Malware in sbrugna...

EUVD-2020-6094

Malware in sbrugna...

CVE-2024-36442

cgi-bin/fdmcgiwebv2.cgi on Swissphone DiCal-RED 4009 devices allows an authenticated attacker to gain access to arbitrary files on the device's file system...

CVE-2022-43976

An issue was discovered in FC46-WebBridge on GE Grid Solutions MS3000 devices before 3.7.6.25p03.2.2.17p04.7p0. Direct access to the API is possible on TCP port 8888 via programs located in the cgi-bin folder without any authentication...

PT-2020-13751 · Intelbras · Intelbras Tip 200 Lite +2

Name of the Vulnerable Software and Affected Versions: Intelbras TIP 200 version 60.61.75.15 Intelbras TIP 200 LITE version 60.61.75.15 Intelbras TIP 300 version 65.61.75.22 Description: The issue allows Directory Traversal via the "cgi-bin/cgiServer.exx" endpoint with the page parameter set to...

[NT] TinyWeb Script Disclosure Vulnerability

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

GoAhead script source leak

It's possible to obtain content of .asp or cgi-bin file by adding special characters to filename...

Cart32 3.0 - expdate Administrative Information Disclosure

Cart32 3.0 - expdate Administrative Information Disclosure source: https://www.securityfocus.com/bid/1358/info By appending the string "/expdate" to a request for the cart32.exe executable, http: //target/cgi-bin/cart32.exe/expdate an attacker can access an error message followed by a debugging...