14 matches found
EUVD-2014-3866
Malware in sbrugna...
EUVD-2014-3863
Malware in sbrugna...
Cougar-LG Insecure SSH Key Path Default Configuration Vulnerability
Cougar-LG is a set of web applications written in Perl for connecting to a router or console. A security vulnerability exists in the default configuration in Cougar-LG. A remote attacker could exploit this vulnerability to obtain an ssh private key...
Cougar-LG Insecure Configuration File Path Vulnerability
Cougar-LG is a set of web applications written in Perl for connecting to a router or console. A security vulnerability exists in Cougar-LG. A remote attacker could exploit this vulnerability to obtain credentials...
CVE-2014-3928
Cougar-LG stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain credentials...
CVE-2014-3929
The default configuration for Cougar-LG stores sensitive information under the web root with insufficient access control, which might allow remote attackers to obtain private ssh keys...
CVE-2014-3929
The default configuration for Cougar-LG stores sensitive information under the web root with insufficient access control, which might allow remote attackers to obtain private ssh keys...
CVE-2014-3928
Cougar-LG stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain credentials...
CVE-2014-3929
The CVE-2014-3929 entry concerns Cougar-LG, a Perl-based set of web applications for router access. Affected component: default configuration that stores sensitive information under the web root with insufficient access control. Root cause: insecure/default file placement allows web-access to pri...
CVE-2014-3928
CVE-2014-3928 affects Cougar-LG web applications (Perl-based looking-glass/router-portal) where sensitive credentials are stored under the web root with insufficient access control. This allows remote attackers to obtain credentials. NVD lists CVSS v3.0 base score 9.8 (CRITICAL) with AV:N/AC:L/PR...
Cross site scripting
Cross-site scripting XSS vulnerability in lg.cgi in Cougar LG 1.9 allows remote attackers to inject arbitrary web script or HTML via the "addr" parameter...
CVE-2014-3926
Cross-site scripting XSS vulnerability in lg.cgi in Cougar LG 1.9 allows remote attackers to inject arbitrary web script or HTML via the "addr" parameter...
CVE-2014-3926
CVE-2014-3926 is an XSS vulnerability in lg.cgi used by Cougar LG 1.9 (LG Looking Glass web apps). The issue arises from accepting the addr parameter without proper sanitization, enabling remote attackers to inject arbitrary web script or HTML. Connected documents (e.g., CNVD-2017-03337) describe...
CVE-2014-3926
Cross-site scripting XSS vulnerability in lg.cgi in Cougar LG 1.9 allows remote attackers to inject arbitrary web script or HTML via the "addr" parameter...