CVE-2019-17511

There are some web interfaces without authentication requirements on D-Link DIR-412 A1-1.14WW routers. An attacker can get the router's log file via logget.php, which could be used to discover the intranet network structure...

CVE-2019-17511

There are some web interfaces without authentication requirements on D-Link DIR-412 A1-1.14WW routers. An attacker can get the router's log file via logget.php, which could be used to discover the intranet network structure...

Xxe

An XML External Entity XXE vulnerability exists in the Charles 4.2.7 import/export setup option. If a user imports a "Charles Settings.xml" file from an attacker, an intranet network may be accessed and information may be leaked...

CVE-2018-19244

An XML External Entity XXE vulnerability exists in the Charles 4.2.7 import/export setup option. If a user imports a "Charles Settings.xml" file from an attacker, an intranet network may be accessed and information may be leaked...

Code injection

The Autonomic Networking Infrastructure ANI implementation in Cisco IOS 15.4S and 15.43S allows remote attackers to modify configuration settings or cause a denial of service partial service outage by sending crafted Autonomic Networking AN messages on an intranet network, aka Bug ID CSCup62167...

CVE-2015-0669

The Autonomic Networking Infrastructure ANI implementation in Cisco IOS 15.4S and 15.43S allows remote attackers to modify configuration settings or cause a denial of service partial service outage by sending crafted Autonomic Networking AN messages on an intranet network, aka Bug ID CSCup62167...

Design/Logic Flaw

IBM WebSphere Portal 8.0.0 before 8.0.0.1 CF13 and 8.5.0 through CF01 provides different error codes for firewall-traversal requests depending on whether the intranet host exists, which allows remote attackers to map the intranet network via a series of requests...