CVE-2018-15711

Nagios XI 5.5.6 allows remote authenticated attackers to reset and regenerate the API key of more privileged users. The attacker can then use the new API key to execute API calls at elevated privileges...

School Equipment Monitoring System 1.0 - login SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: School Equipment Monitoring System 1.0 - 'login' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

School Equipment Monitoring System 1.0 SQL Injection

Exploit Title: School Equipment Monitoring System 1.0 - 'login' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link: https://www.sourcecodester.com/sites/default/files/download/janobe/sems0.zip Version: 1...

School Attendance Monitoring System 1.0 - Cross-Site Request Forgery (Update Admin)

Exploit Title: School Attendance Monitoring System 1.0 - Cross-Site Request Forgery Update Admin Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

School Equipment Monitoring System 1.0 - 'login' SQL Injection

Exploit Title: School Equipment Monitoring System 1.0 - 'login' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link: https://www.sourcecodester.com/sites/default/files/download/janobe/sems0.zip Version: 1...

SQL Injection Vulnerability in Frontend of GPS Intelligent Monitoring Management System of Henan Starcom

Henan Starcom Information Technology Co., Ltd. is a specialized company engaged in GPS global positioning operation services. SQL injection vulnerability exists in the front-end of the GPS Intelligent Monitoring Management System of Henan Xingtong, which can be exploited by attackers to obtain...

Arbitrary File Upload Vulnerability in Integrated Coal Mine Remote Monitoring Management System of Sichuan Institute of Safety Science and Technology

Coal mine remote monitoring integrated management system is a comprehensive monitoring and management system that remotely monitors all the sensing data of coal mine underground in real time through the Internet and summarizes, analyzes and alarms them in time. Sichuan Institute of Safety Science...

Vulnerabilities in the Integrated Management System for Coal Mine Remote Monitoring of Sichuan Institute of Safety Science and Technology

Sichuan Coal Mine Remote Integrated Monitoring System is a comprehensive monitoring and management system that can realize remote real-time monitoring of various sensing data in coal mines through the Internet and summarize, analyze and alarm them in time. It monitors the ventilation and gas...

SQL Injection Vulnerability in Integrated Coal Mine Remote Monitoring Management System of Sichuan Institute of Safety Science and Technology

Sichuan Coal Mine Remote Integrated Monitoring System is a comprehensive monitoring and management system that can realize remote real-time monitoring of various sensing data in coal mines through the Internet and summarize, analyze and alarm them in time. It monitors the ventilation and gas...

Optimizing A Monitoring System: Three Methods for Effective Incident Management

Picture this: You’ve just returned from a well-deserved vacation and, upon opening up your security monitoring system you’re faced with the prospect of analyzing thousands of events. This isn’t an imaginary scenario, the security monitoring world actually monitoring in general is full of anomalie...

Philips Alice 6 Improper Authentication Vulnerability

The Philips Alice 6 is a polysomnographic monitoring system PSG designed to record, display and print physiologic information for clinicians/physicians. The Philips Alice 6 suffers from an improper authentication vulnerability that could be exploited by an attacker to obtain sensitive information...

Growatt Monitoring System Android App Multiple Override Access Vulnerabilities

Growatt Monitoring System Android APP is a client application that provides PV monitoring services. Growatt Monitoring System Android APP has overstepped access vulnerabilities in multiple places. Attackers can obtain sensitive information, including: power plant equipment information, name, powe...

CVE-2017-10933

All versions prior to V2.06.00.00 of ZTE ZXDT22 SF01, an monitoring system of ZTE energy product, are impacted by directory traversal vulnerability that allows remote attackers to read arbitrary files on the system via a full path name after host address...

Logic Vulnerability in Growatt Monitoring System App for Android

Growatt Monitoring System is a remote data monitoring center system for PV power plants developed by Grunewald. The system displays PV plant operation data through intuitive charts and graphs, including power plant power generation, revenue, CO2 emission reduction benefits, equipment operation...

Shaanxi Weibin District Government Service Center Approval Electronic Monitoring System has multiple loopholes

Shaanxi Weibin District Government Service Center Approval Electronic Monitoring System has multiple vulnerabilities Weak password in the background: also the initial password http://113.201.122.70:8080/Approval/System/Login.aspx...

Access Control Deficiencies and Remote Shared Buffer Leakage Vulnerabilities in the Southern Automated Monitoring System (SAMS)

South Deformation Monitoring System SMOS is a deformation monitoring system for monitoring various structures. The SMOS suffers from an Access Control Deficiency and Remote Shared Buffer Leakage vulnerability. An attacker could exploit the vulnerabilities to obtain sensitive information...

CVE-2017-6087

EyesOfNetwork (EON)

GE Bently Nevada 3500/22M Security Bypass Vulnerability

The GE Bently Nevada 3500/22M is a vibration monitoring system. A security bypass vulnerability exists in the GE Bently Nevada 3500/22M. Allowing an attacker to perform unauthorized operations...

SQL Injection Vulnerability in the mail_ID Parameter in the mail.do of Fuzhou Tranda Special Equipment Safety Monitoring System

Fuzhou Chuangda special equipment safety monitoring system using B / S structure, the use of J2EE for development, the system can run on any operating system platform, running into the server and client operation, the server runs the corresponding WEB APPLICATION services such as: TOMCAT, JBOSS,...

Ganglia Authentication Bypass Vulnerability

Ganglia is a cross-platform, scalable, distributed monitoring system for high-performance computing systems. Ganglia suffers from an authentication bypass vulnerability. An attacker can exploit the vulnerability to bypass the authentication mechanism and perform unauthorized actions...