32 matches found
How to Find Maximum Size of IP Data Payload that can Traverse WAN Environment Without Fragmentation
Citrix SD-WAN, formerly NetScaler SD-WAN This article describes how to find out the maximum size of IP data payload that can traverse a WAN environment without fragmentation. Background The CloudBridge acceleration parameters are sent through TCP options, which use the space in the IP data payloa...
CVE-2023-33394
skycaiji v2.5.4 is vulnerable to Cross Site Scripting XSS. Attackers can achieve backend XSS by deploying malicious JSON data...
CVE-2023-33394
skycaiji v2.5.4 is vulnerable to Cross Site Scripting XSS. Attackers can achieve backend XSS by deploying malicious JSON data...
skycaiji 跨站脚本漏洞
Skycaiji Blue Sky Collector is a free data collection and publishing crawler software from China Nanchang Zhuolan Technology Co., Ltd, developed with php+mysql and can be deployed on cloud servers. skycaiji v2.5.4 version of a security vulnerability, the vulnerability stems from the existence of...
CVE-2022-0220
The checkprivacysettings AJAX action of the WordPress GDPR WordPress plugin before 1.9.27, available to both unauthenticated and authenticated users, responds with JSON data without an "application/json" content-type. Since an HTML payload isn't properly escaped, it may be interpreted by a web...
Exploit for Improper Authentication in Dahuasecurity Ipc-Hum7Xxx_Firmware
This is a PoC exploit for CVE-2021-33044, an authentication bypass vulnerability in Dahua IPC, VTH, and VTO devices. The exploit targets the login process of these devices, allowing attackers to bypass device identity authentication by constructing malicious data packets. The exploit is implement...
Buffer overflow
Buffer over-read in ADSP parse function due to lack of check for availability of sufficient data payload received in command response in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...
TP-Link TL-WR886N Denial of Service Vulnerability (CNVD-2019-07039)
The TP-Link TL-WR886N is a wireless router product from China P&L TP-LINK. A security vulnerability exists in TP-Link TL-WR886N version 6.0 2.3.4 and 7.0 1.1.0. An attacker can exploit the vulnerability by sending a request with long JSON data to cause the router service to crash...
Calculate MSS Value for NetScaler SD-WAN Appliances
By default, the MSS value is defined as 1380 bytes in aNetScaler SD-WANappliance, assuming the WAN infrastructure allows a standard IP packet maximum transmission unit MTU size of 1,500 bytes. Some WAN infrastructures might not provide enough space for MSS of 1380 bytes because additional protoco...
Instacart: XSS at in instacart.com/store/partner_recipe
Summary Hi team, i found that this endpoint - https://www.instacart.com/store/partnerrecipe? at param imageurl is vulnerable to XSS Reproduction Steps & PoC 1Go to...
The vulnerabilities of Adobe Integrated Runtime and Flash Player software allow a perpetrator to execute arbitrary code.
The vulnerability of Adobe Integrated Runtime and Flash Player programs relates to the use of memory after it is freed. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using specially crafted MPEG-4 data...
The vulnerability of the Radia Client Automation program allows a hacker to execute arbitrary code.
The vulnerability of the Radia Client Automation user automation program arises due to buffer overflow in the stack. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a large amount of data...