4 matches found
CVE-2026-62184 luci-app-banip Log Monitor IP Extraction Bypass
luci-app-banip contains a log parsing vulnerability where the awk-based parser extracts the first IPv4 address from log lines regardless of field position, allowing attackers to inject arbitrary IPs via attacker-controlled fields like usernames. An unauthenticated remote attacker can inject an IP...
Exploit for Code Injection in Crushftp
CVE-2024-4040 - exploit scanners This repository contains fil...
IpGeo - Tool To Extract IP Addresses From Captured Network Traffic File
IpGeo is a python tool to extract IP addresses from captured network traffic file pcap/pcapng and generate csv report containing details about the geolocation of each ip in the packets. The report contains: 1. Country: 2. Country Code. 3. Region 4. Region Name 5. City 6. Zip 7. Latitude 8...
Elasticsearch remote execution vulnerability affects a large number of domestic server in the cluster-vulnerability warning-the black bar safety net
From Satan online searching key words:“You Know,for search country:CN port:9 2 0 0” Transfer door: http://www.shodanhq.com/search?q=You+Know%2Cfor+search+country%3ACN+port%3A9200 Well, a big wave to open the Elasticsearch service of the server appears: ! So in this one how many you can use? Wrote...