Screen SFT DAB 600/C - Authentication Bypass Admin Password Change Exploit

!/usr/bin/env python3 Exploit Title: Screen SFT DAB 600/C - Authentication Bypass Admin Password Change Exploit Author: LiquidWorm Vendor: DB Elettronica Telecomunicazioni SpA Product web page: https://www.screen.it | https://www.dbbroadcast.com...

CVE-2020-23590

A vulnerability in Optilink OP-XT71000N Hardware version: V2.2 , Firmware Version: OPV3.3.1-191028 allows an unauthenticated remote attacker to conduct a cross-site request forgery CSRF attack to change the Password for "WLAN SSID" through "wlwpa.asp"...

openSUSE Security Update : glibc (openSUSE-SU-2011:0921-1)

The implementation of the blowfish based password hashing method had a bug affecting passwords that contain 8bit characters e.g. umlauts. Affected passwords are potentially faster to crack via brute-force methods CVE-2011-2483. SUSE's crypt implementation supports the blowfish password hashing...

Hosting Controller 6.1 Hotfix 3.1 - Privilege Escalation

Hosting Controller 6.1 Hotfix 3.1 - Privilege Escalation Title: An attacker can gain reseller privileges and after that can gain admin privileges Version: 6.1 Hotfix function siteaction nact= "/hosting/addreseller.asp?htype=3" window.document.all.frm1.action = window.document.all.siteact.value +...

Pirelli AGE mB Router Default Password (microbusiness) for 'admin' Account

The remote host is a Pirelli AGE mB microBusiness router with its default password set admin/microbusiness. An attacker could telnet to it and reconfigure it to lock the owner out and to prevent him from using his Internet connection, and do bad things. Changes by Tenable: - only attempt to login...

webramp-M3-entre.txt

Date: Thu, 21 Jan 1999 15:20:56 -0500 From: James Egelhof To: [email protected] Subject: Re: WebRamp M3 remote network access bug On Thu, 21 Jan 1999, John Stanley wrote: If you are using this box, and you see this bug, and you have NOT changed the admin password from the default, DO SO...