Lucene search
K

13 matches found

Nuclei
Nuclei
added 3 days ago11 views

EyesOfNetwork - Hardcoded API Key & SQL Injection

An issue was discovered in EyesOfNetwork 5.3. The EyesOfNetwork API 2.4.2 is prone to SQL injection, allowing an unauthenticated attacker to perform various tasks such as authentication bypass via the username field to getApiKey in include/apifunctions.php. id: CVE-2020-8656 info: name:...

9.8CVSS7.1AI score0.846EPSS
Exploits8References3
Nuclei
Nuclei
added 3 days ago152 views

EyesOfNetwork 5.1-5.3 - SQL Injection/Remote Code Execution

EyesOfNetwork 5.1 to 5.3 contains SQL injection and remote code execution vulnerabilities. An attacker can possibly obtain sensitive information from a database, modify data, and execute unauthorized administrative operations in the context of the affected site. See also CVE-2020-8655,...

9.8CVSS7.8AI score0.91874EPSS
Exploits13References5
Check Point Advisories
Check Point Advisories
added 2020/11/18 12:0 a.m.10 views

SQL Injection Over HTTP Traffic (CVE-2020-11530; CVE-2020-17463; CVE-2020-17506; CVE-2020-25990; CVE-2020-27481; CVE-2020-5766; CVE-2020-8655; CVE-2020-8656; CVE-2020-9465)

SQL Injection Over HTTP Traffic...

9.3CVSS0.9AI score0.95657EPSS
Exploits38
Exploit DB
Exploit DB
added 2020/03/05 12:0 a.m.128 views

EyesOfNetwork - AutoDiscovery Target Command Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'EyesOfNetwork AutoDiscovery Target Command Execution', 'Description' = %q This module exploits multiple vulnerabilities in EyesOfNetwork version...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/03/03 12:0 a.m.97 views

EyesOfNetwork AutoDiscovery Target Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'EyesOfNetwork AutoDiscovery Target Command Execution', 'Description' = %q This module exploits multiple vulnerabilities in EyesOfNetwork version...

9.3CVSS0.5AI score0.91874EPSS
Exploits12
Circl
Circl
added 2020/03/02 9:31 p.m.31 views

CVE-2020-8656

creationtimestamp| type| source ---|---|--- 2020-03-02 21:31:51+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/eyesofnetworkautodiscoveryrce.rb 2020-03-05 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/48169 2025-02-06...

9.8CVSS7.2AI score0.846EPSS
In wildExploits8References6
OpenVAS
OpenVAS
added 2020/02/11 12:0 a.m.135 views

Eyes Of Network (EON) <= 2.4.2 Multiple API Vulnerabilities

Eyes Of Network EON is prone to multiple vulnerabilities over the API. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS9.4AI score0.91874EPSS
Exploits9References5
Packet Storm
Packet Storm
added 2020/02/08 12:0 a.m.150 views

EyesOfNetwork 5.3 Remote Code Execution

Exploit Title: EyesOfNetwork 5.3 - Remote Code Execution Date: 2020-02-01 Exploit Author: Clément Billac Vendor Homepage: https://www.eyesofnetwork.com/ Software Link: http://download.eyesofnetwork.com/EyesOfNetwork-5.3-x8664-bin.iso Version: 5.3 CVE : CVE-2020-8654, CVE-2020-8655, CVE-2020-8656...

0.1AI score0.85646EPSS
Exploits11
NVD
NVD
added 2020/02/07 12:15 a.m.7 views

CVE-2020-8656

An issue was discovered in EyesOfNetwork 5.3. The EyesOfNetwork API 2.4.2 is prone to SQL injection, allowing an unauthenticated attacker to perform various tasks such as authentication bypass via the username field to getApiKey in include/apifunctions.php...

9.8CVSS9.9AI score0.846EPSS
Exploits8References3
0day.today
0day.today
added 2020/02/07 12:0 a.m.89 views

EyesOfNetwork 5.3 Remote Code Execution Exploit

Exploit for php platform in category web applications Exploit Title: EyesOfNetwork 5.3 - Remote Code Execution Exploit Author: Clément Billac Vendor Homepage: https://www.eyesofnetwork.com/ Software Link: http://download.eyesofnetwork.com/EyesOfNetwork-5.3-x8664-bin.iso Version: 5.3 CVE :...

9.3CVSS0.85646EPSS
Exploits11
Exploit DB
Exploit DB
added 2020/02/07 12:0 a.m.431 views

EyesOfNetwork 5.3 - Remote Code Execution

Exploit Title: EyesOfNetwork 5.3 - Remote Code Execution Date: 2020-02-01 Exploit Author: Clément Billac Vendor Homepage: https://www.eyesofnetwork.com/ Software Link: http://download.eyesofnetwork.com/EyesOfNetwork-5.3-x8664-bin.iso Version: 5.3 CVE : CVE-2020-8654, CVE-2020-8655, CVE-2020-8656...

9.8CVSS8.2AI score0.85646EPSS
Exploits11
exploitpack
exploitpack
added 2020/02/07 12:0 a.m.77 views

EyesOfNetwork 5.3 - Remote Code Execution

EyesOfNetwork 5.3 - Remote Code Execution Exploit Title: EyesOfNetwork 5.3 - Remote Code Execution Date: 2020-02-01 Exploit Author: Clément Billac Vendor Homepage: https://www.eyesofnetwork.com/ Software Link: http://download.eyesofnetwork.com/EyesOfNetwork-5.3-x8664-bin.iso Version: 5.3 CVE :...

9.3CVSS0.1AI score0.85646EPSS
Exploits11
CVE
CVE
added 2020/02/06 11:47 p.m.181 views

CVE-2020-8656

EyesOfNetwork 5.3 is affected by CVE-2020-8656 in the API (EyesOfNetwork API 2.4.2). The vulnerability is a SQL injection in getApiKey (username field) that can be exploited unauthenticated to bypass authentication and access the monitoring system. Related advisories cite high/severity impacts (C...

9.8CVSS8.9AI score0.846EPSS
In wildExploits8References3Affected Software1
Rows per page
Query Builder