Lucene search
K

790 matches found

exploitpack
exploitpack
added 2019/02/18 12:0 a.m.24 views

Comodo Dome Firewall 2.7.0 - Cross-Site Scripting

Comodo Dome Firewall 2.7.0 - Cross-Site Scripting Exploit Title: Comodo Dome Firewall 2.7.0 | Cross-Site Scripting Date: 18.02.2019 Exploit Author: Ozer Goker Vendor Homepage: https://cdome.comodo.com/firewall/ Software Link:...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2019/02/18 12:0 a.m.41 views

Comodo Dome Firewall 2.7.0 Cross Site Scripting

Exploit Title: Comodo Dome Firewall 2.7.0 | Cross-Site Scripting Date: 18.02.2019 Exploit Author: Ozer Goker Vendor Homepage: https://cdome.comodo.com/firewall/ Software Link: https://secure.comodo.com/home/purchase.php?pid=106&license=try&track=9278&af=9278 Version: 2.7.0 Introduction Comodo Dom...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2019/02/18 12:0 a.m.40 views

Comodo Dome Firewall 2.7.0 - Cross-Site Scripting

Exploit Title: Comodo Dome Firewall 2.7.0 | Cross-Site Scripting Date: 18.02.2019 Exploit Author: Ozer Goker Vendor Homepage: https://cdome.comodo.com/firewall/ Software Link: https://secure.comodo.com/home/purchase.php?pid=106&license=try&track=9278&af=9278 Version: 2.7.0 Introduction Comodo Dom...

7.4AI score
Exploits0
OSV
OSV
added 2019/01/30 3:29 p.m.4 views

CVE-2018-17431

Web Console in Comodo UTM Firewall before 2.7.0 allows remote attackers to execute arbitrary code without authentication via a crafted URL...

9.8CVSS6.1AI score0.83912EPSS
Exploits4References3
NVD
NVD
added 2019/01/30 3:29 p.m.22 views

CVE-2018-17431

Web Console in Comodo UTM Firewall before 2.7.0 allows remote attackers to execute arbitrary code without authentication via a crafted URL...

9.8CVSS9.7AI score0.83912EPSS
Exploits4References3
Prion
Prion
added 2019/01/30 3:29 p.m.17 views

Authentication flaw

Web Console in Comodo UTM Firewall before 2.7.0 allows remote attackers to execute arbitrary code without authentication via a crafted URL...

7.5CVSS9.7AI score0.83912EPSS
Exploits4References3Affected Software1
Cvelist
Cvelist
added 2019/01/29 11:0 p.m.28 views

CVE-2018-17431

Web Console in Comodo UTM Firewall before 2.7.0 allows remote attackers to execute arbitrary code without authentication via a crafted URL...

9.8AI score0.83912EPSS
Exploits4References3
CVE
CVE
added 2019/01/29 11:0 p.m.88 views

CVE-2018-17431

Affected software: Comodo UTM Firewall Web Console (all releases before 2.7.0, and related 1.5.0) per CVE-2018-17431. Vulnerability type & root cause: remote code execution via a crafted URL that allows an unauthenticated attacker to execute arbitrary code on the target. Descriptions across sourc...

9.8CVSS9.7AI score0.83912EPSS
In wildExploits4References3Affected Software1
Positive Technologies
Positive Technologies
added 2019/01/29 12:0 a.m.7 views

PT-2019-9479 · Comodo · Comodo Utm Firewall

Name of the Vulnerable Software and Affected Versions: Comodo UTM Firewall versions prior to 2.7.0 Description: The issue allows remote attackers to execute arbitrary code without authentication via a crafted URL. This is related to the Web Console in Comodo UTM Firewall. Recommendations: For...

9.8CVSS9.7AI score0.83912EPSS
Exploits4References5
Packet Storm
Packet Storm
added 2019/01/21 12:0 a.m.22 views

Comodo KORUGAN VM 1.9.3.1100 Cross Site Scripting

Exploit Title: Comodo KORUGAN VM 1.9.3.1100 | Cross-Site Scripting Date: 18.01.2019 Exploit Author: Ozer Goker Vendor Homepage: https://www.korugan.com/koruganvm.php Software Link: https://download.comodo.com/korugan/iso/Korugan-1-9-3-1100-x8664.iso Version: 1.9.3.1100 Introduction Korugan VM wit...

Exploits0
Packet Storm
Packet Storm
added 2019/01/21 12:0 a.m.83 views

Comodo KORUGAN LITE 1.6.5.1024 Cross Site Scripting

Exploit Title: Comodo KORUGAN LITE 1.6.5.1024 | Cross-Site Scripting Date: 18.01.2019 Exploit Author: Ozer Goker Vendor Homepage: https://www.korugan.com/koruganlite.php Software Link: https://download.comodo.com/korugan/Korugan-Lite.ova Version: 1.6.5.1024 Introduction Korugan Unified Threat...

7.4AI score
Exploits0
GithubExploit
GithubExploit
added 2018/12/08 7:47 a.m.3 views

Exploit for Improper Authentication in Comodo Unified_Threat_Management_Firewall

CVE-2018-17431-PoC Proof of consept for CVE-2018-17431 E...

9.8CVSS7.5AI score0.83912EPSS
Exploits4
ThreatPost
ThreatPost
added 2018/09/20 2:23 p.m.12 views

Magecart Strikes Again, Siphoning Payment Info from Newegg

The Magecart threat actor, which just made headlines with the British Airways breach, has been racking up conquests lately and shows no signs of slowing down. This week, it added a new feather to its compromise cap: The Newegg online retailer. Newegg is a top online merchant with tens of millions...

0.1AI score
Exploits0References10
The Hacker News
The Hacker News
added 2018/09/19 7:39 p.m.2 views

Hackers Steal Customers' Credit Cards From Newegg Electronics Retailer

The notorious hacking group behind the Ticketmaster and British Airways data breaches has now victimized popular computer hardware and consumer electronics retailer Newegg. Magecart hacking group managed to infiltrate the Newegg website and steal the credit card details of all customers who enter...

6.7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/11/16 4:16 p.m.12 views

comodo.com XSS vulnerability

Open Bug Bounty ID: OBB-418081 Description| Value ---|--- Affected Website:| comodo.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

6.4AI score
Exploits0
The Hacker News
The Hacker News
added 2017/08/31 4:59 a.m.11 views

Massive Email Campaign Sends Locky Ransomware to Over 23 Million Users

Whenever we feel like the Locky ransomware is dead, the notorious threat returns with a bang. Recently, researchers from two security firms have independently spotted two mass email campaigns, spreading two different, but new variants of the Locky ransomware. Lukitus Campaign Sends 23 Million...

6.6AI score
Exploits0
Microsoft KB
Microsoft KB
added 2017/07/11 7:0 a.m.78 views

July 11, 2017—KB4025342 (OS Build 15063.483)

July 11, 2017—KB4025342 OS Build 15063.483 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue introduced by KB4022716where Internet Explorer 11 may close unexpectedly when you...

10CVSS7.4AI score0.7376EPSS
Exploits14
hackapp
hackapp
added 2017/03/02 8:38 p.m.23 views

Comodo Mobile Security - Customized SSL, Dangerous filesystem permissions, Exported ContentProvider vulnerabilities

HackApp vulnerability scanner discovered that application Comodo Mobile Security published at the 'play' market has multiple vulnerabilities...

0.6AI score
Exploits0References1Affected Software1
Openbugbounty
Openbugbounty
added 2017/02/11 2:42 a.m.13 views

comodo.bluesnap.com XSS vulnerability

Vulnerable URL: https://comodo.bluesnap.com/jsp/buynow.jsp?contractId=3209254=939126&custom2;=Y&custom3;=Comodo&custom6;=%22--!%3E%3Csvg/onload=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at 28.08.2017 Latest check for patch:| 28.08.2017 09:53 GMT Vulnerability...

6.3AI score
Exploits0
0day.today
0day.today
added 2016/10/07 12:0 a.m.29 views

Comodo Chromodo Browser - Unquoted Service Path Privilege Escalation Vulnerability

Exploit for windows platform in category local exploits Exploit Title: Comodo Chromodo Browser Unquoted Service Path Privilege Escalation Date: 03/10/2016 Author: Yunus YILDIRIM @Th3GundY Team: CT-Zer0 @CRYPTTECH Website: http://yildirimyunus.com Contact: email protected Category: local Vendor...

6.8AI score
Exploits0
Rows per page
Query Builder