CVE-2020-36825

UNSUPPORTED WHEN ASSIGNED DISPUTED A vulnerability has been found in cyberaz0r WebRAT up to 20191222 and classified as critical. This vulnerability affects the function downloadfile of the file Server/api.php. The manipulation of the argument name leads to unrestricted upload. The attack can be...

CVE-2020-36825

UNSUPPORTED WHEN ASSIGNED DISPUTED A vulnerability has been found in cyberaz0r WebRAT up to 20191222 and classified as critical. This vulnerability affects the function downloadfile of the file Server/api.php. The manipulation of the argument name leads to unrestricted upload. The attack can be...

CVE-2020-36825

A vulnerability has been found in cyberaz0r WebRAT up to 20191222 and classified as critical. This vulnerability affects the function downloadfile of the file Server/api.php. The manipulation of the argument name leads to unrestricted upload. The attack can be initiated remotely. The patch is...

CVE-2020-36825 cyberaz0r WebRAT api.php download_file unrestricted upload

UNSUPPORTED WHEN ASSIGNED DISPUTED A vulnerability has been found in cyberaz0r WebRAT up to 20191222 and classified as critical. This vulnerability affects the function downloadfile of the file Server/api.php. The manipulation of the argument name leads to unrestricted upload. The attack can be...

CVE-2020-36825

The CVE-2020-36825 entry refers to cyberaz0r WebRAT (up to 20191222) with a flaw in Server/api.php called download_file. Manipulating the argument name (name) allows unrestricted upload, and the issue can be triggered remotely over the network. A patch is identified (0c394a795b9c10c07085361e6fcea...

CVE-2020-36825 cyberaz0r WebRAT api.php download_file unrestricted upload

UNSUPPORTED WHEN ASSIGNED DISPUTED A vulnerability has been found in cyberaz0r WebRAT up to 20191222 and classified as critical. This vulnerability affects the function downloadfile of the file Server/api.php. The manipulation of the argument name leads to unrestricted upload. The attack can be...

PT-2024-10836 · Unknown · Cyberaz0R Webrat

Name of the Vulnerable Software and Affected Versions: cyberaz0r WebRAT up to 20191222 Description: A critical issue affects the function download file of the file Server/api.php. The manipulation of the argument name leads to unrestricted upload. The attack can be initiated remotely. The real...

GL.iNet AR300M 4.3.7 Arbitrary File Write

!/usr/bin/env python3 Exploit Title: GL.iNet = 4.3.7 Arbitrary File Write Google Dork: intitle:"GL.iNet Admin Panel" Date: XX/11/2023 Exploit Author: Michele 'cyberaz0r' Di Bonaventura Vendor Homepage: https://www.gli-net.com Software Link:...

GL.iNet AR300M v3.216 Remote Code Execution - CVE-2023-46456 Exploit

!/usr/bin/env python3 Exploit Title: GL.iNet = 3.216 Remote Code Execution via OpenVPN Client Google Dork: intitle:"GL.iNet Admin Panel" Date: XX/11/2023 Exploit Author: Michele 'cyberaz0r' Di Bonaventura Vendor Homepage: https://www.gli-net.com Software Link:...

my-address-ip.com Cross Site Scripting vulnerability OBB-1408893

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

wikihow.com Cross Site Scripting vulnerability OBB-1408853

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...