Geutebruck 5.02024 G-Cam/EFD-2250 - simple_loglistjs.cgi Remote Command Execution Exploit

This Metasploit module exploits a an arbitrary command execution vulnerability. The vulnerability exists in the /uapi-cgi/viewer/simpleloglistjs.cgi page and allows an anonymous user to execute arbitrary commands with root privileges. Firmware 'Geutebruck simpleloglistjs.cgi Remote Command...

johnhorse.com XSS vulnerability

Open Bug Bounty ID: OBB-627287 Description| Value ---|--- Affected Website:| johnhorse.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2018-11714

An issue was discovered on TP-Link TL-WR840N v5 00000005 0.9.1 3.16 v0001.0 Build 170608 Rel.58696n and TL-WR841N v13 00000013 0.9.1 4.16 v0001.0 Build 170622 Rel.64334n devices. This issue is caused by improper session handling on the /cgi/ folder or a /cgi file. If an attacker sends a header of...

cmireb.be XSS vulnerability

Open Bug Bounty ID: OBB-612719 Description| Value ---|--- Affected Website:| cmireb.be Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

triumphpc.com XSS vulnerability

Open Bug Bounty ID: OBB-601437 Description| Value ---|--- Affected Website:| triumphpc.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

The vulnerability of the cgiHandler function in the Embedthis GoAhead web server allows a hacker to execute arbitrary code.

The vulnerability of the cgiHandler function in the Embedthis GoAhead web server is related to insufficient validation of input data during the processing of HTTP requests for dynamically linked CGI programs. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through...

mail.hakone.com XSS vulnerability

Open Bug Bounty ID: OBB-541584 Description| Value ---|--- Affected Website:| mail.hakone.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

search.southern-charms.com XSS vulnerability

Open Bug Bounty ID: OBB-539876 Description| Value ---|--- Affected Website:| search.southern-charms.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

szkandelous.com XSS vulnerability

Open Bug Bounty ID: OBB-537436 Description| Value ---|--- Affected Website:| szkandelous.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2017-18025

cgi-bin/drknow.cgi in Innotube ITGuard-Manager 0.0.0.1 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the username field, as demonstrated by a username beginning with "admin|" to use the '|' metacharacter...

CVE-2017-17562

Embedthis GoAhead before 3.6.5 allows remote code execution if CGI is enabled and a CGI program is dynamically linked. This is a result of initializing the environment of forked CGI scripts using untrusted HTTP request parameters in the cgiHandler function in cgi.c. When combined with the glibc...

web.bryant.edu XSS vulnerability

Open Bug Bounty ID: OBB-435949 Description| Value ---|--- Affected Website:| web.bryant.edu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploit for OS Command Injection in Gnu Bash

Hellshocker 0.1.1 Tool to exploit Shellshock vulnerability...

CVE-2017-16923

Command Injection vulnerability in appdatacenter on Shenzhen Tenda Ac9 USAC9V1.0BRV15.03.05.14multiTD01, Ac9 ac9kfV15.03.05.196318cn, Ac15 USAC15V1.0BRV15.03.05.18multiTD01, Ac15 USAC15V1.0BRV15.03.05.19multiTD01, Ac18 USAC18V1.0BRV15.03.05.05multiTD01, and Ac18 ac18kfV15.03.05.196318cn devices...

Amazon Linux AMI : munin (ALAS-2017-818)

Munin before 2.999.6 has a local file write vulnerability when CGI graphs are enabled. Setting multiple upperlimit GET parameters allows overwriting any file accessible to the www-data user. CVE-2017-6188 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

CVE-2016-9682

The provided connected sources confirm CVE-2016-9682 affects SonicWall Secure Remote Access (SRA) 8.1.0.2-14sv. The vulnerabilities are remote command injections in the diagnostics CGI (/cgi-bin/diagnostics) used for emailing system state. Root cause: the application fails to properly escape data...

NETGEAR WNR2000 Router Heap Buffer Overflow Vulnerability

The Netgear WNR2000 is a wireless router product from the American company Netgear. A heap buffer overflow vulnerability exists in the NETGEAR WNR2000 router. Since the router HTTP server handles .cgi files by way of URLs, an attacker exploiting the vulnerability could cause a denial of service...

IQInvision IQ832N /oditable. cgi page there is a command injection vulnerability

No description provided by source...

Honeywell IP-Camera HICC-1100PT - Credentials Disclosure

imply go to the following url: http://host:port/cgi-bin/readfile.cgi?query=ADMINID Should return some javascript variable which contain the credentials and other configuration vars: var AdmID="admin"; var AdmPass1=“admin”; var AdmPass2=“admin”; var Language=“en”; var LogoffTime="0"; Request: GET...

CGIHandler: sets environmental variable based on user supplied Proxy request header

It was discovered that the Python CGIHandler class did not properly protect against the HTTPPROXY variable name clash in a CGI context. A remote attacker could possibly use this flaw to redirect HTTP requests performed by a Python CGI script to an attacker-controlled proxy via a malicious HTTP...