PT-2022-12108 · Reolink · Reolink Rlc-410W

Name of the Vulnerable Software and Affected Versions: reolink RLC-410W version 3.0.0.136 20121102 Description: A denial of service issue exists in the cgiserver.cgi JSON command parser functionality. This can be triggered by a specially-crafted HTTP request, leading to a reboot. The search param...

Fortinet FortiWeb Denial of Service Vulnerability (CNVD-2021-84248)

Fortinet FortiWeb is a Web application layer firewall from the U.S. company Fita Fortinet, which can block threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks to ensure the security of Web applications and protect sensitive database content. A...

Micrium uC-HTTP Code Issue Vulnerability

Micrium uC-HTTP is a software from Micrium USA that provides TCP/IP functionality for devices. The software is designed for embedded applications with a compact, reliable, high-performance TCP/IP stack with dual support for IPv4 and IPv6. A security vulnerability exists in Micrium uC-HTTP version...

Ubiquiti Inc.: UniFi Video Server - Arbitrary file upload as SYSTEM

In UniFi Video Server prior to 3.3.0, due to lack of filename verification, it was possible to upload files to arbitrary locations using a especially crafted HTTP request. The exploit require valid credentials and is only exploitable in the Windows version...

EUVD-2015-6376

An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System UCS Manager before 2.24b, 2.25 before 2.25a, and 3.0 before 3.02e allows remote attackers to execute arbitrary shell commands via a crafted HTTP request, aka Bug ID CSCur90888...

0DayDB 2.3 - id Remote Authentication Bypass

0DayDB 2.3 - id Remote Authentication Bypass !/usr/bin/perl Autor : Pr0metheuS Script : 0DayDB v2.3 Version : v2.3 Dork : "Powered By 0DayDB v2.3" Gr33tz-Team.org use LWP::UserAgent; if@ARGV!=3 print "\n"; print "0DayDB v2.3 Remote Admin Bypass\n"; print "perl $0 \n"; print "downloads ID for...

Security Advisory: Login bypass in LedgerSMB 1.2.0 through 1.2.6

A security issue has been found which allows an unauthenticated user to bypass the authentication system in LedgerSMB 1.2.0 through 1.2.6. Severity: Highly Critical Versions affected: 1.2.0 through 1.2.6 Status: Vendor solution available upgrade to 1.2.7 Effect: Authentication bypass. Required...

RED QUEEN Path Disclosure

RED QUEEN Path Disclosure Vuln. discovered by : r0t Date: 16 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/red-queen-path-disclosure.html vendor:http://www.randommouse.com/cgi-bin/rms/ product/about/aboutproduct.cgi?sku=REDQN &referer=hotscripts&creative=linkindexing affected...

Remote IIS 5.x and IIS 6.0 Server Name Spoof

Remote IIS 5.x and IIS 6.0 Server Name Spoof It is possible to remotely spoof the "SERVERNAME" Microsoft® Internet Information Server® 5.0, 5.1 and 6.0 server variable by doing a modified HTTP request. Thus potentially revealing sensitive ASP code through the IIS 500-100.asp error page, the spoof...

CVE-2002-1874

CVE-2002-1874 affects AstroCam 0.9-1-1 through 1.4.0 (astrocam.cgi). The vulnerability allows remote attackers to execute arbitrary commands by injecting shell metacharacters in an HTTP request, indicating a command-injection risk in the CGI handler. The description notes vendor clarification tha...

CVE-2004-0313

Buffer overflow in PSOProxy 0.91 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long HTTP request, as demonstrated using a long 1 GET argument or 2 method name...

Icecast <= 2.0.1 Win32 Remote Code Execution Exploit

Exploit for unknown platform in category remote exploits ==================================================== Icecast iceexec 127.0.0.1 Icecast nc 127.0.0.1 9999 Microsoft Windows XP Version 5.1.2600 C Copyright 1985-2001 Microsoft Corp. C:Icecast2 Win32...

CVE-2001-1186

Microsoft IIS 5.0 allows remote attackers to cause a denial of service via an HTTP request with a content-length value that is larger than the size of the request, which prevents IIS from timing out the connection...

PlaySMS <= 0.7 SQL Injection Exploit

Exploit for linux platform in category remote exploits ==================================== PlaySMS new Proto = "tcp", PeerAddr = $host, PeerPort = "80" ; unless $remote die "cannot connect to http daemon on $host" print "connected "; $remote-autoflush1; my $http = "GET /playsms/frleft.php HTTP/1...

lionmax software www file share pro 2.4x - Multiple Vulnerabilities (2)

// source: https://www.securityfocus.com/bid/9425/info WWW File Share Pro has been reported prone to multiple remote vulnerabilities. The first reported issue is that a remote attacker may employ the "upload" functionality of the vulnerable software to overwrite arbitrary files that are writable ...

Softrex Tornado WWW-Server 1.2 - Buffer Overflow

source: https://www.securityfocus.com/bid/7716/info A buffer overflow vulnerability has been reported for Tornado www-Server. The vulnerability exists when Tornado processes overly long HTTP requests. This will result in the server crashing. Although unconfirmed, it may be possible to exploit thi...

Softrex Tornado WWW-Server 1.2 - Buffer Overflow

Softrex Tornado WWW-Server 1.2 - Buffer Overflow source: https://www.securityfocus.com/bid/7716/info A buffer overflow vulnerability has been reported for Tornado www-Server. The vulnerability exists when Tornado processes overly long HTTP requests. This will result in the server crashing. Althou...

EZ Publish 2.2.73.0 - Multiple Full Path Disclosure Vulnerabilities

EZ Publish 2.2.73.0 - Multiple Full Path Disclosure Vulnerabilities source: https://www.securityfocus.com/bid/7349/info Several path disclosure vulnerabilities have been reported for eZ Publish. An attacker can exploit this vulnerability by making a HTTP request for any of the affected pages. Thi...

Guestbook 4.0 - Sensitive Information Disclosure

Guestbook 4.0 - Sensitive Information Disclosure source: https://www.securityfocus.com/bid/7320/info Guestbook has been reported prone to a sensitive information disclosure weakness. An attacker may disclose sensitive information regarding the Super Guestbook install by sending a HTTP request for...

Guestbook 4.0 - Sensitive Information Disclosure

source: https://www.securityfocus.com/bid/7320/info Guestbook has been reported prone to a sensitive information disclosure weakness. An attacker may disclose sensitive information regarding the Super Guestbook install by sending a HTTP request for the Guest Book passwd file. Administration...