Lucene search
K

65 matches found

CVE
CVE
added 2015/05/18 3:0 p.m.50 views

CVE-2014-8384

The CVE-2014-8384 entry concerns the InFocus IN3128HD projector (firmware 0.26). The issue is missing authentication for the CGI file webctrl.cgi.elf in cgi-bin, allowing an unauthenticated remote attacker to modify DHCP/server IP configurations, reboot the device, and change the device hostname,...

9.4CVSS6.8AI score0.03235EPSS
Exploits3References3Affected Software1
CVE
CVE
added 2015/05/18 3:0 p.m.45 views

CVE-2014-8383

The CVE-2014-8383 entry concerns the InFocus IN3128HD projector with firmware 0.26. Public sources describe an authentication bypass in the web interface (by accessing /main.html after login) and missing authentication for the CGI file /cgi-bin/webctrl.cgi.elf, enabling unauthenticated access to ...

10CVSS7AI score0.03092EPSS
Exploits3References3Affected Software1
securityvulns
securityvulns
added 2015/05/11 12:0 a.m.58 views

[CORE-2015-0008] - InFocus IN3128HD Projector Multiple Vulnerabilities

Advisory Information Title: InFocus IN3128HD Projector Multiple Vulnerabilities Advisory ID: CORE-2015-0008 Advisory URL: http://www.coresecurity.com/advisories/infocus-in3128hd-projector-multiple-vulnerabilities Date published: 2015-04-27 Date of last update: 2015-04-22 Vendors contacted:...

10CVSS6.8AI score0.03235EPSS
Exploits4
securityvulns
securityvulns
added 2015/05/11 12:0 a.m.26 views

InFocus projectors authentication bypass

Few authentication bypass possibilities...

10CVSS3.8AI score0.03235EPSS
Exploits4References1
ThreatPost
ThreatPost
added 2015/04/28 11:42 a.m.21 views

Authentication Vulnerabilities Identified in Projector Firmware

The manufacturer of a popular projector found primarily in classrooms is neglecting to address several authentication bugs that exist in the device that could open it up to hacks. It’s technically the firmware for the projector, InFocus IN3128HD, version 0.26, that’s vulnerable. The web interface...

10CVSS1.1AI score0.03092EPSS
Exploits3References1
Packet Storm
Packet Storm
added 2015/04/28 12:0 a.m.63 views

InFocus IN3128HD Projector Missing Authentication

Advisory Information Title: InFocus IN3128HD Projector Multiple Vulnerabilities Advisory ID: CORE-2015-0008 Advisory URL: http://www.coresecurity.com/advisories/infocus-in3128hd-projector-multiple-vulnerabilities Date published: 2015-04-27 Date of last update: 2015-04-22 Vendors contacted:...

10CVSS0.3AI score0.03235EPSS
Exploits4
0day.today
0day.today
added 2015/04/28 12:0 a.m.71 views

InFocus IN3128HD Projector Missing Authentication Vulnerability

The InFocus IN3128HD Projector is vulnerable to an authentication bypass in its web interface login page, and is missing authentication for the "webctrl.cgi.elf" CGI file, which allows several actions to be performed or configured inside the device. Firmware 0.26 is verified vulnerable. 1. Adviso...

10CVSS6.7AI score0.03235EPSS
Exploits4
WPVulnDB
WPVulnDB
added 2014/08/01 12:0 a.m.5 views

InFocus - Arbitrary File Download

The infocus WordPress theme was affected by an Arbitrary File Download security vulnerability...

2.8AI score
Exploits0References2Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.9 views

Infocus Real Estate Enterprise Edition Script Authentication Bypass

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/06/27 12:0 a.m.38 views

Wordpress Theme Infocus /dl-skin.php 任意文件下载漏洞

No description provided by source...

7.1AI score
Exploits0
0day.today
0day.today
added 2014/06/20 12:0 a.m.38 views

Wordpress Theme Infocus Arbitrary File Download Vulnerability

This exploit allows attacker to download any writable file from the server Usage Info The exploit extension is .html Put the path of the file in the file's field of the exploit ,then click "Download" button then you get the file directly Title : Wordpress Theme Infocus Arbitrary File Download...

6.9AI score
Exploits0
Patchstack
Patchstack
added 2014/06/08 12:0 a.m.3 views

WordPress Infocus Theme - Local File Disclosure

WordPress Infocus theme is prone to a local file disclosure vulnerability that allows an attacker to get potentially sensitive information from local files on computers running the vulnerable application. Solution Upgrade the plugin...

3.8AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2014/06/08 12:0 a.m.13 views

WordPress Theme Infocus - infocuslibscriptsdl-skin.php Local File Disclosure

WordPress Theme Infocus - infocuslibscriptsdl-skin.php Local File Disclosure source: https://www.securityfocus.com/bid/67934/info The Infocus theme for WordPress is prone to a local file-disclosure vulnerability because it fails to adequately validate user-supplied input. Exploiting this...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2014/06/08 12:0 a.m.26 views

WordPress Theme Infocus - '/infocus/lib/scripts/dl-skin.php' Local File Disclosure

source: https://www.securityfocus.com/bid/67934/info The Infocus theme for WordPress is prone to a local file-disclosure vulnerability because it fails to adequately validate user-supplied input. Exploiting this vulnerability would allow an attacker to obtain potentially sensitive information fro...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2014/06/06 12:0 a.m.26 views

WordPress Infocus Local File Disclosure

Post Local File Disclosure in wordpress theme Infocus + Date: 07/06/2014 + CWE Number: CWE-98 + Risk: High + Author: Felipe Andrian Peixoto + Dork:inurl:"/wp-content/themes/infocus/" + Vendor Homepage: http://themeforest.net/item/infocus-powerful-professional-wordpress-theme/85486 + Contact:...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2014/01/27 12:0 a.m.26 views

WordPress Infocus Theme Cross Site Scripting

Infocus Theme DOM Based XSS Details ======= Product: Infocus Theme DOM Based XSS Security-Risk: Moderate Remote-Exploit: yes Company: RHAINFOSEC Website: http://services.rafayhackingarticles.net Vendor-URL: http://themeforest.net/item/infocus-powerful-professional-wordpress-theme/85486...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2011/08/01 12:0 a.m.84 views

Infocus Web Solutions (news_desc.php?id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Infocus Web Solutions newsdesc.php?id AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.infocuswebdesigning.com/ Persian Gulf 4 Ever! Dork : "Powered by Infocus Web Solutio...

2.9AI score
Exploits0
Packet Storm
Packet Storm
added 2011/07/20 12:0 a.m.23 views

Infocus Web Solutions SQL Injection

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Infocus Web Solutions newsdesc.php?id AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.infocuswebdesigning.com/ Persian Gulf 4 Ever! Dork : "Powered by Infocus Web Solutio...

7.4AI score
Exploits0
NVD
NVD
added 2010/05/03 1:51 p.m.21 views

CVE-2010-1654

Multiple SQL injection vulnerabilities in systemmemberlogin.php in Infocus Real Estate Enterprise Edition allow remote attackers to execute arbitrary SQL commands via the 1 username aka login and 2 password parameters. NOTE: some of these details are obtained from third party information...

7.5CVSS8.6AI score0.01003EPSS
Exploits1References5
Cvelist
Cvelist
added 2010/04/30 5:0 p.m.15 views

CVE-2010-1654

Multiple SQL injection vulnerabilities in systemmemberlogin.php in Infocus Real Estate Enterprise Edition allow remote attackers to execute arbitrary SQL commands via the 1 username aka login and 2 password parameters. NOTE: some of these details are obtained from third party information...

8.6AI score0.01003EPSS
Exploits1References5
Rows per page
Query Builder