14 matches found
EUVD-2020-27904
Malware in sbrugna...
PixelStor 5000 K:4.0.1580-20150629 - Remote Code Execution Exploit
Exploit for php platform in category web applications Exploit Title: PixelStor 5000 - Remote Code Execution Product: PixelStor 5000 Vendor: Rasilient Exploit Author: .:UND3R:. Vendor Homepage: http://rasilient.com Version: K:4.0.1580-20150629 KDI Version Tested on: K:4.0.1580-20150629 KDI Version...
PixelStor 5000 K:4.0.1580-20150629 Remote Code Execution
Exploit Title: PixelStor 5000 - Remote Code Execution Product: PixelStor 5000 Vendor: Rasilient Date: 2020-01-08 Exploit Author: .:UND3R:. Vendor Homepage: http://rasilient.com Version: K:4.0.1580-20150629 KDI Version Tested on: K:4.0.1580-20150629 KDI Version CVE: CVE-2020-6756 URL Author:...
Rasilient PixelStor 5000 Remote Code Execution Vulnerability
The Rasilient PixelStor 5000 is a RAID disk array. A remote code execution vulnerability exists in languageOptions.php in the Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI version. An unauthenticated attacker can exploit this vulnerability to remotely execute code via the lang parameter...
PixelStor 5000 K:4.0.1580-20150629 - Remote Code Execution
Exploit Title: PixelStor 5000 - Remote Code Execution Product: PixelStor 5000 Vendor: Rasilient Date: 2020-01-08 Exploit Author: .:UND3R:. Vendor Homepage: http://rasilient.com Version: K:4.0.1580-20150629 KDI Version Tested on: K:4.0.1580-20150629 KDI Version CVE: CVE-2020-6756 URL Author:...
CVE-2020-6756
languageOptions.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows unauthenticated attackers to remotely execute code via the lang parameter...
CVE-2020-6756
languageOptions.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows unauthenticated attackers to remotely execute code via the lang parameter...
CVE-2020-6758
A cross-site scripting XSS vulnerability in Option/optionsAll.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows remote attackers to inject arbitrary web script or HTML via the ContentFrame parameter...
Code injection
contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows authenticated attackers to remotely execute code via the name parameter...
Cross site scripting
A cross-site scripting XSS vulnerability in Option/optionsAll.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows remote attackers to inject arbitrary web script or HTML via the ContentFrame parameter...
CVE-2020-6756
CVE-2020-6756 affects Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version). The vulnerability is in languageOptions.php and allows unauthenticated remote code execution via the lang parameter. Connected sources confirm an RCE condition with this PHP file, affecting PixelStor 5000 K devices;...
CVE-2020-6758
The CVE-2020-6758 entry corresponds to a cross-site scripting (XSS) vulnerability in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version), specifically in Option/optionsAll.php, exploitable through the ContentFrame parameter. This is confirmed across multiple connected documents (Red Hat, C...
CVE-2020-6757
contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows authenticated attackers to remotely execute code via the name parameter...
Rasilient PixelStor 5000 Remote Code Execution Vulnerability
The Rasilient PixelStor 5000 is a low-cost, high-bandwidth and high-availability RAID disk array. A remote code execution vulnerability exists in the contentHostProperties.php file in the Rasilient PixelStor 5000 K: 4.0.1580-20150629 KDI version release, which can be exploited by an attacker to...