support.clean-mx.com XSS vulnerability

Vulnerable URL: http://support.clean-mx.com/clean-mx/phishing.php?ip=50.87.144.247=id DESC'/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.09.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website...

Moxa Active OPC Server Unquoted Service Path Escalation Vulnerability

OVERVIEW Independent researcher Zhou Yu has identified an unquoted service path escalation vulnerability in Moxa’s Active OPC Server application. Moxa has produced a new version to mitigate this vulnerability. Zhou Yu has tested the new version to validate that it resolves the vulnerability...

Cisco TelePresence XML Application Programming Interface Authentication Bypass Vulnerability (cisco-sa-20160504-tpxml)

Cisco TelePresence Codec TC and Collaboration Endpoint CE Software are vulnerable to a vulnerability in the XML application programming interface API which could allow an unauthenticated, remote attacker to bypass authentication and access a targeted system through the API SPDX-FileCopyrightText:...

PRO MX 2 - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application PRO MX 2 published at the 'play' market has multiple vulnerabilities...

MX Motocross Free - Corrupted files, Dangerous filesystem permissions, Dynamic Code Loading vulnerabilities

HackApp vulnerability scanner discovered that application MX Motocross Free published at the 'play' market has multiple vulnerabilities...

2XL MX Offroad - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application 2XL MX Offroad published at the 'play' market has multiple vulnerabilities...

Camera MX - Customized SSL, Exported ContentProvider vulnerabilities

HackApp vulnerability scanner discovered that application Camera MX published at the 'play' market has multiple vulnerabilities...

夏普 Sharp MX-M264FP 复印机未授权访问

No description provided by source...

62.67.194.183 XSS vulnerability

Vulnerable URL: http://62.67.194.183/clean-mx/viruses.php?email=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 10:15 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Ran...

app.iev.tabasco.gob.mx XSS vulnerability

Open Bug Bounty ID: OBB-91582 Description| Value ---|--- Affected Website:| app.iev.tabasco.gob.mx Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...

Mitsubishi MX Component v3 ActiveX Buffer Overflow (CVE-2013-3075)

A code execution vulnerability has been reported in Mitsubishi's MX PLC component. The vulnerability is due to insufficient validation of input by several functions. A remote attacker can exploit this vulnerability by enticing a user to visit a maliciously crafted website. This can lead to code...

ucol.mx XSS vulnerability

Vulnerable URL: http://www.ucol.mx/interpretextos/buscar.php?idrevis=%22%3E%3Cimg%20src=x%20onerror=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 21.11.2017 Latest check for patch:| 21.11.2017 22:30 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

Juniper Junos MX Series Trio-based PFE Modules Security Bypass (JSA10666)

According to its self-reported version number, the remote Juniper Junos MX series device is affected by a security bypass vulnerability when processing stateless firewall filters on a device with Trio-based PFE modules with IPv4 filters. A remote attacker can exploit this issue to bypass stateles...

Juniper Junos MX Series BBE Routers jpppd Remote DoS (JSA10665)

According to its self-reported version number, the remote Juniper Junos device is affected by a denial of service vulnerability in the Juniper PPP daemon jpppd. A remote attacker can exploit this issue by sending a specially crafted PAP Authenticate-Request after successful negotiation of the PPP...

CVE-2014-6382

The Juniper MX Series routers with Junos 13.3R3 through 13.3Rx before 13.3R6, 14.1 before 14.1R4, 14.1X50 before 14.1X50-D70, and 14.2 before 14.2R2, when configured as a broadband edge BBE router, allows remote attackers to cause a denial of service jpppd crash and restart by sending a crafted P...

Design/Logic Flaw

The Juniper MX Series routers with Junos 13.3R3 through 13.3Rx before 13.3R6, 14.1 before 14.1R4, 14.1X50 before 14.1X50-D70, and 14.2 before 14.2R2, when configured as a broadband edge BBE router, allows remote attackers to cause a denial of service jpppd crash and restart by sending a crafted P...

CVE-2014-6382

CVE-2014-6382 affects Juniper MX Series routers running Junos 13.3R3–13.3Rx pre-13.3R6, 14.1 pre-14.1R4, 14.1X50 pre-14.1X50-D70, and 14.2 pre-14.2R2 when configured as a broadband edge (BBE) router. The issue is a DoS in the PPP daemon (jpppd) triggered by a crafted PAP Authenticate-Request afte...

CVE-2014-7993

Cisco Meraki HTTP Handler Local Information Disclosure vulnerability (CVE-2014-7993) affects Cisco Meraki MS, MR, and MX devices with firmware prior to 2014-09-24. An HTTP handler that does not require requests to originate from the Meraki cloud allows LAN-adjacent attackers to obtain sensitive c...

CVE-2014-5440

SQL injection vulnerability in Login.aspx in MPEX Business Solutions MX-SmartTimer before 13.19.18 allows remote attackers to execute arbitrary SQL commands via the ct100%24CPHContent%24password parameter...

CVE-2014-5440

MX-SmartTimer (MPEX Business Solutions) is affected by CVE-2014-5440 due to an SQL injection in Login.aspx. The vulnerability enables remote attackers to send SQL commands via the ct100%24CPHContent%24password parameter in versions before 13.19.18, potentially bypassing authentication and executi...