Lucene search
K

21 matches found

NVD
NVD
added 2026/07/01 5:16 a.m.18 views

CVE-2026-7840

UltraVNC repeater through 1.8.2.2 contains a global buffer overflow in its embedded HTTP administration server. The functions wisenderr and wireplyhdr in repeater/webgui/webutils.c write the caller-supplied HTTP request URI into a fixed 1000-byte global buffer hdrbuf via unchecked sprintf calls...

9.8CVSS0.01439EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/01 3:33 a.m.7 views

EUVD-2026-40885

UltraVNC repeater through 1.8.2.2 initializes the HTTP administration server with a hardcoded default password. In repeater/webgui/settings.c:197, when settings2.txt is absent on first run the repeater writes the literal string "adminadmi2" as the admin password via strcpyssavedpassword, 64,...

9.1CVSS5.8AI score0.00374EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2000-0416

Malware in sbrugna...

5CVSS6.4AI score0.03238EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2002-1135

Malware in sbrugna...

7.1CVSS6.4AI score0.06668EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2004-2037

Malware in sbrugna...

5CVSS6.4AI score0.0306EPSS
Exploits1References6
Check Point Advisories
Check Point Advisories
added 2012/10/14 12:0 a.m.14 views

Oracle GlassFish Enterprise Server REST Interface Cross Site Request Forgery (CVE-2012-0550)

A cross-site request forgery CSRF vulnerability has been reported in the GlassFish HTTP administration interface...

6.4AI score0.06976EPSS
Exploits0
Prion
Prion
added 2008/09/18 8:0 p.m.23 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the HTTP Administration component in Cisco IOS 12.4 on the 871 Integrated Services Router allow remote attackers to execute arbitrary commands via 1 a certain "show privilege" command to the /level/15/exec/- URI, and 2 a certain "alias...

9.3CVSS8.5AI score0.23857EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2008/09/18 8:0 p.m.35 views

CVE-2008-4128

Multiple cross-site request forgery CSRF vulnerabilities in the HTTP Administration component in Cisco IOS 12.4 on the 871 Integrated Services Router allow remote attackers to execute arbitrary commands via 1 a certain "show privilege" command to the /level/15/exec/- URI, and 2 a certain "alias...

8AI score0.23857EPSS
Exploits1References5
CVE
CVE
added 2008/09/18 8:0 p.m.50 views

CVE-2008-4128

CVE-2008-4128 concerns Cisco IOS 12.4 on the 871 ISR, where multiple CSRF vulnerabilities in the HTTP Administration component can allow remote command execution via the show privilege command to /level/15/exec/- and the alias exec command to /level/15/exec/-/configure/http. Connected sources con...

9.3CVSS8AI score0.23857EPSS
In wildExploits1References8Affected Software1
NVD
NVD
added 2008/09/18 8:0 p.m.23 views

CVE-2008-4128

Multiple cross-site request forgery CSRF vulnerabilities in the HTTP Administration component in Cisco IOS 12.4 on the 871 Integrated Services Router allow remote attackers to execute arbitrary commands via 1 a certain "show privilege" command to the /level/15/exec/- URI, and 2 a certain "alias...

9.3CVSS8AI score0.23857EPSS
Exploits1References8
seebug.org
seebug.org
added 2008/09/18 12:0 a.m.17 views

Cisco Router HTTP Administration CSRF Command Execution Exploit 2

No description provided by source. !-- Jeremy Brown [email protected]/http://jbrownsec.blogspot.com Cisco Router HTTP Administration CSRF Remote Command Execution Universal Exploit 2 Replace "10.10.10.1" with the IP address of the target router, embed this in a web page and hope for the best...

7.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2008/09/18 12:0 a.m.4 views

PT-2008-5427

Name of the Vulnerable Software and Affected Versions Cisco IOS version 12.4 on the 871 Integrated Services Router Description The issue allows remote attackers to execute arbitrary commands. This is achieved through cross-site request forgery CSRF vulnerabilities in the HTTP Administration...

9.3CVSS6.3AI score0.23857EPSS
Exploits1References10
0day.today
0day.today
added 2008/09/17 12:0 a.m.28 views

Cisco Router HTTP Administration CSRF Command Execution Exploit 2

Exploit for hardware platform in category remote exploits ================================================================= Cisco Router HTTP Administration CSRF Command Execution Exploit 2 ================================================================= 0day.today 2018-03-01...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/09/17 12:0 a.m.27 views

ciscOWN1.txt

...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/09/17 12:0 a.m.22 views

Cisco Router - HTTP Administration Cross-Site Request Forgery Command Execution (2)

Cisco Router - HTTP Administration Cross-Site Request Forgery Command Execution 2 milw0rm.com 2008-09-17...

0.3AI score
Exploits0
Prion
Prion
added 2007/08/03 9:17 p.m.13 views

Design/Logic Flaw

index.html in the HTTP administration interface in certain daemons in TIBCO Rendezvous RV 7.5.2 allows remote attackers to obtain sensitive information, such as a user name and IP addresses, via a direct request...

5CVSS6.9AI score0.01256EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2007/08/03 9:17 p.m.30 views

CVE-2007-4159

index.html in the HTTP administration interface in certain daemons in TIBCO Rendezvous RV 7.5.2 allows remote attackers to obtain sensitive information, such as a user name and IP addresses, via a direct request...

5CVSS6.4AI score0.01256EPSS
Exploits0References5
Cvelist
Cvelist
added 2005/05/10 4:0 a.m.18 views

CVE-2004-2045

The HTTP administration interface on Conceptronic CADSLR1 ADSL router running firmware 3.04n allows remote attackers to cause a denial of service device reboot via an HTTP request with a long username...

6.7AI score0.0306EPSS
Exploits1References5
CVE
CVE
added 2005/05/10 4:0 a.m.41 views

CVE-2004-2045

The CVE-2004-2045 issue affects the Conceptronic CADSLR1 ADSL router (firmware 3.04n). The HTTP administration interface is vulnerable to a denial-of-service (device reboot) caused by sending an HTTP request with a long username. The root cause is not detailed beyond the long username triggering ...

5CVSS7.1AI score0.0306EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2004/12/31 5:0 a.m.13 views

CVE-2004-2045

The HTTP administration interface on Conceptronic CADSLR1 ADSL router running firmware 3.04n allows remote attackers to cause a denial of service device reboot via an HTTP request with a long username...

5CVSS6.7AI score0.0306EPSS
Exploits1References5
Rows per page
Query Builder