Lucene search
K

5908 matches found

CVE
CVE
added 2018/01/24 10:0 p.m.351 views

CVE-2018-1000007

CVE-2018-1000007 affects curl/libcurl; it can leak HTTP authentication data when redirects occur. Root cause: libcurl may resend custom headers (e.g., Authorization) to hosts in a 30x redirect after sending to the initial URL. Connected advisories (e.g., CentOS/RHEL/CESA-2018:3157) confirm vulner...

9.8CVSS8AI score0.08031EPSS
Exploits0References14Affected Software1
FreeBSD
FreeBSD
added 2018/01/24 12:0 a.m.38 views

cURL -- Multiple vulnerabilities

The cURL project reports: libcurl 7.1 through 7.57.0 might accidentally leak authentication data to third parties. When asked to send custom headers in its HTTP requests, libcurl will send that set of headers first to the host in the initial URL but also, if asked to follow redirects and a 30X HT...

9.8CVSS8.2AI score0.08031EPSS
Exploits0References1
Fortinet
Fortinet
added 2018/01/22 12:0 a.m.40 views

HTTP Host header attacks against web proxy disclaimer response webpage

The FortiOS web proxy disclaimer page is potentially vulnerable to an XSS attack, via maliciously crafted "Host" headers in user HTTP requests. The latter is possible if an attacker is in a Man-in-the-middle position i.e. able to modify the HTTP requests of the potential victim before they reach...

4.3CVSS1.3AI score0.01075EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2018/01/12 8:0 p.m.23 views

CVE-2017-16743

An Improper Authorization issue was discovered in PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, and 48xxx Series products running firmware Version 1.0 to 1.32. A remote unauthenticated attacker may be able to craft special HTTP requests allowing an attacker to bypass web-service authentication allowing t...

9.7AI score0.03111EPSS
Exploits0References2
exploitpack
exploitpack
added 2018/01/10 12:0 a.m.29 views

D-Link Routers 110412615815 1.03 - service.cgi Arbitrary Code Execution

D-Link Routers 110412615815 1.03 - service.cgi Arbitrary Code Execution !/usr/bin/python Exploit Title: D-Link WAP 615/645/815 .?.?', 'Product Page : .?' def dlinkdetection: try: r = requests.getURL, timeout=10.00 except requests.exceptions.ConnectionError: print "Error: Failed to connect to " +...

0.7AI score
Exploits0
seebug.org
seebug.org
added 2017/12/29 12:0 a.m.52 views

InfraPower PPS-02-S Q213V1 Cross-Site Request Forgery

Summary InfraPower Manager PPS-02-S is a FREE built-in GUI of each IP dongle IPD-02-S only to remotely monitor the connected PDUs. Patented IP Dongle provides IP remote access to the PDUs by a true network IP address chain. Only 1xIP dongle allows access to max. 16 PDUs in daisy chain - which is ...

6.9AI score
Exploits0
Prion
Prion
added 2017/12/28 2:29 a.m.23 views

Hardcoded credentials

cgi-bin/mft/wirelessmft.cgi in AirLive BU-2015 with firmware 1.03.18 16.06.2014, AirLive BU-3026 with firmware 1.43 21.08.2014, AirLive MD-3025 with firmware 1.81 21.08.2014, AirLive WL-2000CAM with firmware LM.1.6.18 14.10.2011, and AirLive POE-200CAM v2 with firmware LM.1.6.17.01 uses hard-code...

10CVSS7.1AI score0.50491EPSS
Exploits5References5Affected Software5
CVE
CVE
added 2017/12/27 6:0 p.m.55 views

CVE-2014-8389

CVE-2014-8389 affects AirLive IP cameras (MD-3025, BU-3026, BU-2015, WL-2000CAM, POE-200CAM). The vulnerability is an OS command injection in the CGI binaries: cgi_test.cgi on the MD-3025/BU-3026/BU-2015 (injection via certain parameters such as write_tan, etc.), and wireless_mft.cgi on WL-2000CA...

10CVSS9.2AI score0.50491EPSS
Exploits5References5Affected Software1
Packet Storm
Packet Storm
added 2017/12/27 12:0 a.m.45 views

Telesquare SKT LTE Router SDT-CS3B1 CSRF / Command Execution

Telesquare SKT LTE Router SDT-CS3B1 CSRF System Command Execution Vendor: Telesquare Co., Ltd. Product web page: http://www.telesquare.co.kr Affected version: FwVer: SDT-CS3B1, sw version 1.2.0 LteVer: ML300S5XEA41090 1 0.1.0 Modem model: PM-L300S Summary: We introduce SDT-CS3B1 LTE router which ...

0.1AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2017/12/27 12:0 a.m.74 views

Telesquare SKT LTE Router SDT-CS3B1 CSRF System Command Execution

Summary We introduce SDT-CS3B1 LTE router which is a SKT 3G and 4G LTE wireless communication based LTE router product. Description The router suffers from authenticated arbitrary system command execution. The application interface allows users to perform certain actions via HTTP requests without...

5.3CVSS6AI score0.00286EPSS
Exploits2
Exploit DB
Exploit DB
added 2017/12/27 12:0 a.m.44 views

Telesquare SKT LTE Router SDT-CS3B1 - Cross-Site Request Forgery

Telesquare SKT LTE Router SDT-CS3B1 CSRF System Command Execution Vendor: Telesquare Co., Ltd. Product web page: http://www.telesquare.co.kr Affected version: FwVer: SDT-CS3B1, sw version 1.2.0 LteVer: ML300S5XEA41090 1 0.1.0 Modem model: PM-L300S Summary: We introduce SDT-CS3B1 LTE router which ...

7.4AI score
Exploits0
Prion
Prion
added 2017/12/21 5:29 p.m.28 views

Denial of service

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, undisclosed HTTP requests may cause a denial of service...

7.8CVSS7.5AI score0.0236EPSS
Exploits0References3Affected Software10
Cvelist
Cvelist
added 2017/12/21 5:0 p.m.21 views

CVE-2017-6133

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, undisclosed HTTP requests may cause a denial of service...

7.5AI score0.0236EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/12/20 12:0 a.m.277 views

Palo Alto Networks PAN-OS Management Interface RCE (PAN-SA-2017-0027)

The Palo Alto Networks PAN-OS running on the remote host is affected by a remote code execution vulnerability in the management interface due to improper validation of user-supplied input when handling HTTP requests. An unauthenticated, remote attacker can exploit this, via a series of specially...

9.8CVSS9.1AI score0.9834EPSS
Exploits13References3
NVD
NVD
added 2017/12/14 9:29 p.m.24 views

CVE-2017-5264

Versions of Nexpose prior to 6.4.66 fail to adequately validate the source of HTTP requests intended for the Automated Actions administrative web application, and are susceptible to a cross-site request forgery CSRF attack...

8.8CVSS8.8AI score0.02746EPSS
Exploits4References3
Prion
Prion
added 2017/12/14 9:29 p.m.21 views

Cross site request forgery (csrf)

Versions of Nexpose prior to 6.4.66 fail to adequately validate the source of HTTP requests intended for the Automated Actions administrative web application, and are susceptible to a cross-site request forgery CSRF attack...

6.8CVSS8.8AI score0.02746EPSS
Exploits4References3Affected Software1
Cvelist
Cvelist
added 2017/12/14 9:0 p.m.18 views

CVE-2017-5264

Versions of Nexpose prior to 6.4.66 fail to adequately validate the source of HTTP requests intended for the Automated Actions administrative web application, and are susceptible to a cross-site request forgery CSRF attack...

8.9AI score0.02746EPSS
Exploits4References3
seebug.org
seebug.org
added 2017/12/11 12:0 a.m.23 views

SonicDICOM PACS 2.3.2 CSRF Add Admin Exploit

Summary SonicDICOM is PACS software that combines the capabilities of DICOM Server with web browser based DICOM Viewer. Description The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2017/12/11 12:0 a.m.45 views

TrueConf Server v4.3.7 Multiple Remote Web Vulnerabilities

Summary TrueConf Server is a powerful, high-quality and highly secured video conferencing software server. It is specially designed to work with up to 250 participants in a multipoint conference over LAN or VPN networks. TrueConf Server requires no hardware and includes client applications for al...

6.9AI score
Exploits0
Kitploit
Kitploit
added 2017/12/09 1:11 p.m.18 views

w3af - Web Application Attack and Audit Framework

w3af is an open source web application security scanner which helps developers and penetration testers identify and exploit vulnerabilities in their web applications. The scanner is able to identify 200+ vulnerabilities, including Cross-Site Scripting, SQL injection and OS commanding. Identify an...

8.2AI score
Exploits0References5
Rows per page
Query Builder