Lucene search
K

9 matches found

Metasploit
Metasploit
added 2020/08/28 5:40 p.m.145 views

Peplink Balance routers SQLi

Firmware versions up to 7.0.0-build1904 of Peplink Balance routers are affected by an unauthenticated SQL injection vulnerability in the bauth cookie, successful exploitation of the vulnerability allows an attacker to retrieve the cookies of authenticated users, bypassing the web portal...

9.8CVSS9.2AI score0.61577EPSS
Exploits7
Circl
Circl
added 2020/08/27 9:59 p.m.19 views

CVE-2017-8835

creationtimestamp| type| source ---|---|--- 2020-08-27 21:59:46+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/peplinkbauthsqli.rb 2025-02-06 03:13:43+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:10:00+00:00| seen|...

9.8CVSS9.3AI score0.61577EPSS
Exploits7References1
Openbugbounty
Openbugbounty
added 2019/09/06 4:6 p.m.5 views

saitarnshop.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-957697 Security Researcher geeknik Helped patch 8815 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting saitarnshop.com website and...

0.1AI score
Exploits0
seebug.org
seebug.org
added 2017/06/06 12:0 a.m.89 views

Multiple Vulnerabilities in peplink balance routers

Multiple Vulnerabilities in peplink balance routers =================================================== Overview -------- Confirmed Affected Versions: 7.0.0-build1904 Confirmed Patched Versions: fw-b305hw2380hw6580hw2710hw31350hw22500-7.0.1-build2093.bin Vulnerable Firmware:...

7.5CVSS8.7AI score0.61577EPSS
Exploits7
exploitpack
exploitpack
added 2017/06/06 12:0 a.m.52 views

Peplink Balance Routers 7.0.0-build1904 - SQL Injection Cross-Site Scripting Information Disclosure

Peplink Balance Routers 7.0.0-build1904 - SQL Injection Cross-Site Scripting Information Disclosure X41 D-Sec GmbH Security Advisory: X41-2017-005 Multiple Vulnerabilities in peplink balance routers =================================================== Overview -------- Confirmed Affected Versions:...

7.5CVSS7.2AI score0.61577EPSS
Exploits7
Exploit DB
Exploit DB
added 2017/06/06 12:0 a.m.68 views

Peplink Balance Routers 7.0.0-build1904 - SQL Injection / Cross-Site Scripting / Information Disclosure

X41 D-Sec GmbH Security Advisory: X41-2017-005 Multiple Vulnerabilities in peplink balance routers =================================================== Overview -------- Confirmed Affected Versions: 7.0.0-build1904 Confirmed Patched Versions:...

9.8CVSS6.9AI score0.61577EPSS
Exploits7
NVD
NVD
added 2017/06/05 2:29 p.m.27 views

CVE-2017-8835

SQL injection exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2380hw6580hw2710hw31350hw22500-7.0.1-build2093. An attack vector is the bauth cookie to cgi-bin/MANGA/admin.cgi. One impact is enumeration of user accounts by observing whether a sessi...

9.8CVSS9.8AI score0.61577EPSS
Exploits7References3
CVE
CVE
added 2017/06/05 2:0 p.m.73 views

CVE-2017-8835

CVE-2017-8835 describes an unauthenticated SQL injection in Peplink Balance routers (models 305, 380, 580, 710, 1350, 2500) that is triggered via the bauth cookie to the path cgi-bin/MANGA/admin.cgi. The underlying issue enables an attacker to observe session data and enumerate user accounts, as ...

9.8CVSS9.7AI score0.61577EPSS
Exploits7References3Affected Software1
Packet Storm
Packet Storm
added 2017/06/05 12:0 a.m.94 views

Peplink 7.0.0-build1904 XSS / CSRF / SQL Injection / File Deletion

X41 D-Sec GmbH Security Advisory: X41-2017-005 Multiple Vulnerabilities in peplink balance routers =================================================== Overview -------- Confirmed Affected Versions: 7.0.0-build1904 Confirmed Patched Versions:...

6.9AI score0.61577EPSS
Exploits7
Rows per page
Query Builder