18 matches found
EUVD-2011-4755
Malware in sbrugna...
EUVD-2011-4754
Malware in sbrugna...
CVE-2011-4837
Cross-site request forgery CSRF vulnerability in /ctrl in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to hijack the authentication of admins for requests that execute arbitrary programs...
CVE-2011-4836
Cross-site scripting XSS vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to inject arbitrary web script or HTML via a request for a crafted URI...
CVE-2011-4835
Directory traversal vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to access arbitrary files via unspecified vectors...
HomeSeer HS2 Web Interface Multiple Vulnerabilities
This host is running HomeSeer HS2 and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodhomeseerhs2webinterfacemultvuln.nasl 7015 2017-08-28 11:51:24Z teissa $ HomeSeer HS2 Web Interface Multiple Vulnerabilities Authors: Rachana Shetty Copyright: Copyright c 2011 SecPod,...
HomeSeer HS2 Web Interface <= 2.5.0.20 Multiple XSS Vulnerabilities - Active Check
HomeSeer HS2 is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...
CVE-2011-4836
Cross-site scripting XSS vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to inject arbitrary web script or HTML via a request for a crafted URI...
CVE-2011-4835
Directory traversal vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to access arbitrary files via unspecified vectors...
CVE-2011-4837
Cross-site request forgery CSRF vulnerability in /ctrl in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to hijack the authentication of admins for requests that execute arbitrary programs...
Directory traversal
Directory traversal vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to access arbitrary files via unspecified vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to inject arbitrary web script or HTML via a request for a crafted URI...
CVE-2011-4835
CVE-2011-4835 is a directory traversal vulnerability in the HomeSeer HS2 Web Interface (version 2.5.0.20 or earlier) that allows remote attackers to access arbitrary files via unspecified vectors. The NVD entry describes a web interface directory traversal with a CVSSv2 base score of 7.5 (High) a...
CVE-2011-4836
The CVE-2011-4836 entry describes a Cross-Site Scripting (XSS) vulnerability in the web interface of HomeSeer HS2 version 2.5.0.20. The issue allows remote attackers to inject arbitrary web script or HTML through requests for crafted URIs directed at the HS2 web UI. Public references in the conne...
CVE-2011-4837
CVE-2011-4837 describes a Cross-site request forgery (CSRF) in the HomeSeer HS2 web interface (/ctrl) that allows an attacker to hijack admin authentication and perform actions, including executing arbitrary programs, on HS2 2.5.0.20. The available sources confirm the vulnerability and affected v...
CVE-2011-4835
Directory traversal vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to access arbitrary files via unspecified vectors...
HomeSeer HS2 2.5.0.20 - Web Interface Log Viewer Page URI Cross-Site Scripting
HomeSeer HS2 2.5.0.20 - Web Interface Log Viewer Page URI Cross-Site Scripting source: https://www.securityfocus.com/bid/50978/info HS2 web interface is prone to multiple security vulnerabilities: 1. An HTML-injection vulnerability. 2. A cross-site request-forgery vulnerability. 3. A...
HomeSeer HS2 web interface multiple vulnerabilities
Overview HomeSeer HS2 home automation software web interface contains multiple vulnerabilities. Description According to HomeSeer's website, "HomeSeer HS2 is an advanced home automation and remote access software package that is designed to integrate the major systems of any home". The HomeSeer H...