CVE-2025-15620

HiOS Switch Platform versions 09.1.00 through 09.4.04 and 10.0.00 through 10.3.00 contain a denial-of-service vulnerability in the web interface that allows remote attackers to reboot the affected device by sending a malicious HTTP GET request to a specific endpoint. Attackers can trigger an...

WebTareas 2.0p8 Cross Site Scripting

Exploit Title: WebTareas v2.0p8 - Login Portal - Reflected Cross Site Scripting XSS Exploit Author: Bobby Cooke Date: May 7th, 2020 Vendor Homepage: http://webtareas.sf.net/ Software Link: https://sourceforge.net/projects/webtareas/files/2.0p8/webTareas-v2.0p8.zip/download Version: v2.0p8 Tested...

CVE-2017-16776

Security researchers discovered an authentication bypass vulnerability in version 2.0.2 of the Conserus Workflow Intelligence application by McKesson Medical Imaging Company, which is now a Change Healthcare company. The attacker must send a malicious HTTP GET request to exploit the vulnerability...

Addonics NAS Adapter (bts.cgi) Remote DoS Exploit (post-auth)

No description provided by source. !/bin/bash Addonics NAS Adapter bts.cgi Post-Auth DoS Tested against NASU2FW41 Loader 1.17 Coded by Mike Cyr, aka h00die mcyr2 at csc dotcom Notes: Any of these BoF crashes the entire stack from the web GUI so throw a GET, and bye bye baby! Greetz to muts and...

Addonics NAS Adapter - (Authenticated) Denial of Service

Addonics NAS Adapter - Authenticated Denial of Service !/bin/bash Addonics NAS Adapter Post-Auth DoS Tested against R3282-1.33c LOADER32 1.15, and NASU2FW41 Loader 1.17 Coded by Mike Cyr, aka h00die mcyr2 at csc dotcom Notes: Any of these BoF crashes the entire stack from the web GUI so throw a...

Pi3Web 2.0.1 - GET Denial of Service

// source: https://www.securityfocus.com/bid/7555/info It has been reported that Pi3Web server is prone to a denial of service vulnerability. Reportedly, when a malicious GET request is sent to the Pi3Web server the server will fail. It should be noted that the Unix version has been reported...