Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Checkpoint Quantum_Spark_Firmware

CVE-2024-24919 Exploit tool to validate CVE-2024-24919 vulnera...

CVE-2017-2339

A persistent cross site scripting vulnerability in NetScreen WebUI of Juniper Networks Juniper NetScreen Firewall+VPN running ScreenOS allows a user with the 'security' role to inject HTML/JavaScript content into the management session of other users including the administrator. This enables the...

CVE-2017-2336

A reflected cross site scripting vulnerability in NetScreen WebUI of Juniper Networks Juniper NetScreen Firewall+VPN running ScreenOS allows a network based attacker to inject HTML/JavaScript content into the management session of other users including the administrator. This enables the attacker...

Cross site scripting

A persistent cross site scripting vulnerability in NetScreen WebUI of Juniper Networks Juniper NetScreen Firewall+VPN running ScreenOS allows a user with the 'security' role to inject HTML/JavaScript content into the management session of other users including the administrator. This enables the...

Cross site scripting

A reflected cross site scripting vulnerability in NetScreen WebUI of Juniper Networks Juniper NetScreen Firewall+VPN running ScreenOS allows a network based attacker to inject HTML/JavaScript content into the management session of other users including the administrator. This enables the attacker...

CVE-2017-2336 ScreenOS: XSS vulnerability in ScreenOS Firewall

A reflected cross site scripting vulnerability in NetScreen WebUI of Juniper Networks Juniper NetScreen Firewall+VPN running ScreenOS allows a network based attacker to inject HTML/JavaScript content into the management session of other users including the administrator. This enables the attacker...

CVE-2017-2338

CVE-2017-2338 describes a persistent cross-site scripting (XSS) vulnerability in Juniper Networks ScreenOS WebUI used by NetScreen Firewall+VPN. A user with the security role can inject HTML/JavaScript into other users’ management sessions, potentially granting the attacker the ability to execute...

CVE-2017-2337

CVE-2017-2337 concerns a persistent XSS flaw in Juniper Networks ScreenOS, affecting the NetScreen/WebUI of SSG Series devices. The issue allows a user with the 'security' role to inject HTML/JavaScript into another user’s management session, including administrators, effectively enabling command...

CVE-2017-2336

CVE-2017-2336 is a reflected cross-site scripting vulnerability in Juniper ScreenOS (NetScreen Firewall+VPN) affecting ScreenOS 6.3.x prior to 6.3.0r24 on SSG Series. The issue allows a network-based attacker to inject HTML/JavaScript into a management session of other users, including administra...

CVE-2017-2338 ScreenOS: XSS vulnerability in ScreenOS Firewall

A persistent cross site scripting vulnerability in NetScreen WebUI of Juniper Networks Juniper NetScreen Firewall+VPN running ScreenOS allows a user with the 'security' role to inject HTML/JavaScript content into the management session of other users including the administrator. This enables the...

WANGKONGBAO CNS-1000 UTM IPS-FW - Directory Traversal (Metasploit)

Exploit Title: WANGKONGBAO CNS-1000 and 1100 Network Security Platform UTM Directory Traversal Date: 7/2/2012 Exploit Author: Dillon Beresford Vendor Homepage: http://www.wangkongbao.com/products.html Version: CNS-1000 and 1100 The issue is in the /src/acloglogin.php langid and lang parameters...

CVE-2005-0618

The SMTP binding function in Symantec Firewall/VPN Appliance 200/200R firmware after 1.5Z and before 1.68, Gateway Security 360/360R and 460/460R firmware before vuild 858, and Nexland Pro800turbo, when configured for load balancing between two WANs, might send SMTP traffic to a trusted network...