Lucene search
K

24 matches found

Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.166 views

Satel Iberia SenNet Data Logger And Electricity Meters Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Satel Iberia SenNet Data Logger and Electricity Meters Command Injection Vulnerability', 'Description' = %q This module exploits an OS Command...

9CVSS7.1AI score0.15538EPSS
Exploits2
Metasploit
Metasploit
added 2018/05/30 12:0 a.m.11 views

Cambium ePMP 1000 (up to v2.5) Arbitrary Command Execution

This module exploits an OS Command Injection vulnerability in Cambium ePMP 1000 Authors Karn Ganeshen...

3.8AI score
Exploits0
ICS
ICS
added 2018/01/11 12:0 a.m.48 views

Moxa MXview

CVSS v3 7.8 ATTENTION: Low skill level to exploit. Vendor: Moxa Equipment: MXview Vulnerability: Unquoted Search Path or Element. AFFECTED PRODUCTS The following versions of MXview, network management software, are affected: MXview v2.8 and prior. IMPACT Successful exploitation of this...

7.8CVSS8.3AI score0.0037EPSS
Exploits0References2
Metasploit
Metasploit
added 2017/12/22 6:44 p.m.16 views

Cambium ePMP 1000 'ping' Command Injection (up to v2.5)

This module exploits an OS Command Injection vulnerability in Cambium ePMP 1000 Authors Karn Ganeshen This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Cambium ePMP 1000 'ping' Command Injection ...

7.4AI score
Exploits0
ICS
ICS
added 2017/10/19 12:0 a.m.45 views

SpiderControl MicroBrowser

CVSS v3 8.8 ATTENTION: Remotely exploitable/low skill level to exploit Vendor: SpiderControl Equipment: MicroBrowser Vulnerability: Uncontrolled Search Path Element AFFECTED PRODUCTS The following versions of SpiderControl MicroBrowser, a touch panel operating system, are affected: MicroBrowser...

7.8CVSS7.9AI score0.02009EPSS
Exploits0References3
ICS
ICS
added 2017/09/07 12:0 a.m.46 views

SpiderControl SCADA Web Server

CVSS v3 5.3 ATTENTION: Low skill level to exploit Vendor: SpiderControl Equipment: SCADA Web Server Vulnerability: Improper Privilege Management AFFECTED PRODUCTS The following versions of SCADA Web Server, a software management platform, are affected: SCADA Web Server Version 2.02.0007 and prior...

7.8CVSS7.9AI score0.00388EPSS
Exploits2References3
ICS
ICS
added 2017/08/29 12:0 a.m.41 views

AzeoTech DAQFactory

CVSS v3 7.1 ATTENTION: Local access and user-level privileges are required to exploit these vulnerabilities Vendor: AzeoTech Equipment: DAQFactory Vulnerabilities: Incorrect Default Permissions, Uncontrolled Search Path Element AFFECTED PRODUCTS AzeoTech reports that the vulnerabilities affect th...

7.1CVSS6.8AI score0.00337EPSS
Exploits0References3
ICS
ICS
added 2017/08/22 12:0 a.m.45 views

SpiderControl SCADA Web Server

CVSS v3 5.3 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: SpiderControl Equipment: SCADA Web Server Vulnerability: Directory Traversal AFFECTED PRODUCTS The following versions of SpiderControl SCADA Web Server, a software management platform, are affected: SCADA Web Server...

7.5CVSS7.8AI score0.03842EPSS
Exploits0References3
ICS
ICS
added 2017/08/10 12:0 a.m.35 views

Solar Controls WATTConfig M Software

CVSS v3 7.8 ATTENTION: Low skill level to exploit. Vendor: Solar Controls Equipment: WATTConfig M Software Vulnerability: Uncontrolled Search Path Element AFFECTED PRODUCTS The following versions of Solar Controls’ WATTConfig M Software for Windows 2.5.10 for M SSR/MAX PLCs are affected: WATTConf...

9.3CVSS8AI score0.01761EPSS
Exploits0References3
ICS
ICS
added 2017/08/03 12:0 a.m.50 views

Schneider Electric Pro-face GP-Pro EX

CVSS v3 7.2 ATTENTION: Public exploits are available. Vendor: Schneider Electric Equipment: Pro-face GP-Pro EX Vulnerability: Uncontrolled Search Path Element AFFECTED PRODUCTS The following versions of Pro-face GP-Pro EX software, an HMI management platform, are affected: GP Pro EX version...

7.8CVSS7.9AI score0.00378EPSS
Exploits0References3
ICS
ICS
added 2017/06/06 12:0 a.m.30 views

Digital Canal Structural Wind Analysis

CVSS v3 7.5 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Digital Canal Structural Equipment: Wind Analysis Vulnerability: Stack-Based Buffer Overflow AFFECTED PRODUCTS The following versions of Wind Analysis, a structural engineering software platform, are affected: Wind...

7.5CVSS7.9AI score0.01768EPSS
Exploits1References3
ICS
ICS
added 2017/04/25 12:0 a.m.40 views

BLF-Tech LLC VisualView HMI

CVSS v3 7.0 ATTENTION: Low skill level to exploit Vendor: BLF-Tech LLC Equipment: VisualView HMI Vulnerability: Uncontrolled Search Path Element AFFECTED PRODUCTS The following VisualView HMI versions are affected: VisualView HMI Version 9.9.14.0 and prior. IMPACT Successful exploitation of this...

7CVSS7.3AI score0.01356EPSS
Exploits0References3
ICS
ICS
added 2017/04/04 12:0 a.m.52 views

Schneider Electric Interactive Graphical SCADA System Software

CVSS v3 6.8 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Schneider Electric Equipment: Interactive Graphical SCADA System IGSS Software Vulnerability: DLL Hijacking AFFECTED PRODUCTS Schneider Electric reports that the vulnerability affects the following IGSS HMI desktop...

7.8CVSS7.7AI score0.0134EPSS
Exploits0References3
ICS
ICS
added 2017/03/16 12:0 a.m.50 views

LCDS - Leão Consultoria e Desenvolvimento de Sistemas Ltda ME LAquis SCADA

CVSS v3 7.3 ATTENTION: Low skill level to exploit. Vendor: LCDS - Leão Consultoria e Desenvolvimento de Sistemas Ltda ME Equipment: LAquis SCADA Vulnerability: Improper Access Control AFFECTED PRODUCTS The following versions of LAquis SCADA, an industrial automation software, are affected: LAquis...

7.3CVSS7.4AI score0.00323EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2016/08/02 12:0 a.m.23 views

mySCADAPro 7 Privilege Escalation

mySCADAProv7 Local Privilege Escalation Vendor: mySCADA Technologies s.r.o. Product web page: https://www.myscada.org/ Affected application: myscadaPro Affected version: v7 Current version Vulnerability discovered by: Karn Ganeshen Description: myscadaPro7 application installs seven 8 services. A...

0.7AI score
Exploits0
exploitpack
exploitpack
added 2016/02/04 12:0 a.m.45 views

GE Industrial Solutions UPS SNMP Adapter 4.8 - Multiple Vulnerabilities

GE Industrial Solutions UPS SNMP Adapter 4.8 - Multiple Vulnerabilities Exploit Title: GE Industrial Solutions - UPS SNMP Adapter Command Injection and Clear-text Storage of Sensitive Information Vulnerabilities Discovered by: Karn Ganeshen Vendor Homepage: http://www.geindustrial.com/ Versions...

9CVSS0.6AI score0.14243EPSS
Exploits4
Packet Storm
Packet Storm
added 2015/10/15 12:0 a.m.39 views

PROLiNK H5004NK Backdoor Accounts / RBAC Failure / CSRF

Exploit Title: PROLiNK H5004NK ADSL Wireless Modem Multiple Vulnerabilities Discovered by: Karn Ganeshen Reported on: October 13, 2015 Vendor Response: No process to handle vuln reports Vendor Homepage: http://www.prolink2u.com/newtemp/datacom/adsl-modem-router/381-h5004nk.html Version Affected:...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2013/02/04 12:0 a.m.15 views

D-Link DIR-300 Cross Site Scripting

Requirement 1. HTTPs Access to router 2. Ability to make configuration changes Access vector Remote Impact Persistent XSS / Script execution Vulnerable platform D-Link DIR-300 Firmware v1.3 Severity level High Steps to reproduce 1. Log in to D-link router. 2. Setup - LAN Setup - DHCP Client List ...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/07/28 12:0 a.m.14 views

UPlusFTP Server 1.7.1.01 - (Authenticated) HTTP Remote Buffer Overflow

UPlusFTP Server 1.7.1.01 - Authenticated HTTP Remote Buffer Overflow !/usr/bin/python import socket,sys,base64 print """ +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ UPlusFTP Server v1.7.1.01 HTTP Remot...

1.1AI score
Exploits0
0day.today
0day.today
added 2010/07/28 12:0 a.m.18 views

UPlusFTP Server v1.7.1.01 HTTP Remote Buffer Overflow Post Auth

Exploit for windows platform in category remote exploits =============================================================== UPlusFTP Server v1.7.1.01 HTTP Remote Buffer Overflow Post Auth =============================================================== !/usr/bin/python import socket,sys,base64 print...

7.1AI score
Exploits0
Rows per page
Query Builder