31 matches found
CVE-2026-50233 Lyrion Music Server 9.2.0 Arbitrary Directory Listing
Lyrion Music Server 9.2.0 contains an arbitrary directory listing vulnerability in its readdirectory query, exposed through both the CLI service TCP port 9090 and the HTTP JSON-RPC endpoint /jsonrpc.js. The query accepts a folder parameter and lists its contents with no restriction to the...
EUVD-2026-34832
Lyrion Music Server 9.2.0 contains an arbitrary directory listing vulnerability in its readdirectory query, exposed through both the CLI service TCP port 9090 and the HTTP JSON-RPC endpoint /jsonrpc.js. The query accepts a folder parameter and lists its contents with no restriction to the...
CVE-2026-50233
The CVE-2026-50233 entry concerns Lyrion Music Server 9.2.0 with an arbitrary directory listing flaw in the readdirectory function. The issue is exposed via the CLI service on TCP port 9090 and the HTTP JSON-RPC endpoint at /jsonrpc.js. The vulnerable query accepts a folder parameter and returns ...
Lyrion Music Server 9.2.0 Arbitrary Directory Listing
Summary Lyrion Music Server formerly Logitech Media Server, and often abbreviated as "LMS" is open-source software which can control and serve stream music to a wide range of physical and virtual audio players called Squeezeboxes. Lyrion Music Server can stream your local music collection, intern...
EUVD-2006-0309
Malware in sbrugna...
EUVD-2006-0367
Malware in sbrugna...
EUVD-2002-0773
Malware in sbrugna...
š Mobile Mouse Server 3.6.3 Remote Code Execution
Mobile Mouse Server for macOS exposes a TCP control interface on port 9090, which accepts plaintext commands to simulate keyboard input and launch applications. By default, no authentication is required, allowing a remote attacker to fully control the target system. Version 3.6.3 is affected...
CVE-2024-38346
The CloudStack cluster service runs on unauthenticated port default 9090 that can be misused to run arbitrary commands on targeted hypervisors and CloudStack management server hosts. Some of these commands were found to have command injection vulnerabilities that can result in arbitrary code...
Logitech SqueezeCenter/Media Server CLI Detection
The script tries to identify services supporting Logitech SqueezeCenter/Media Server CLI interface. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Linux/x86 - zsh TCP Bind Shell Port 9090 (96 bytes)
Linux/x86 - zsh TCP Bind Shell Port 9090 96 bytes. Shellcode exploit for Linx86 platform...
Linux/x86 - zsh TCP Bind Shell Port 9090 (96 bytes)
/ ; ; Linux x86 ; Author: thryb ; Date: 13-07-16 ; Purpose: Bind /bin/zsh to TCP port 9090 ; Size: 96 bytes ; ID: SLAE-770 ; Git: https://www.github.com/thryb/SLAE-770 ; global start section .text start: xor eax, eax ; cleaning registers for sanity xor ebx, ebx xor edx, edx xor edi, edi ; 1 -...
Acme.Serve 1.7 - Arbitrary File Access Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2809/info Acme.Serve is a free, open-source, embeddable webserver written in Java. It is small, is intended to provide minimal functionality, and is fully compatible with JavaServer. Acme.Serve 1.7 comes with a webserver...
Symantec Endpoint Protection Manager XXE and SQL Injection Vulnerabilities
Added: 02/24/2014 CVE: CVE-2013-5014 BID: 65466 OSVDB: 103306 Background Symantec Endpoint Protection, by Symantec Corporation, is an antivirus and personal firewall product designed to be centrally managed in corporate environments by the Symantec Endpoint Protection Manager SEPM. The SEPM...
Symantec Endpoint Protection Manager XXE and SQL Injection Vulnerabilities
Added: 02/24/2014 CVE: CVE-2013-5014 BID: 65466 OSVDB: 103306 Background Symantec Endpoint Protection, by Symantec Corporation, is an antivirus and personal firewall product designed to be centrally managed in corporate environments by the Symantec Endpoint Protection Manager SEPM. The SEPM...
(0Day) HP iNode Management Center iNodeMngChecker.exe Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP H3C/3Com iNode Management Center. Authentication is not required to exploit this vulnerability. The flaw exists within the iNOdeMngChecker.exe component which listens by default on TCP port 9090...
HP Intelligent Management Center Endpoint Admission Defense < 5.0 E0101P03 Code Execution Vulnerability
Binary data 5984.prm...
HP Intelligent Management Center User Access Manager < 5.0 E0101P03 Code Execution Vulnerability
Binary data 5983.prm...
ZDI-11-232: HP iNode Management Center iNodeMngChecker.exe Remote Code Execution Vulnerability
ZDI-11-232: HP iNode Management Center iNodeMngChecker.exe Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-232 July 1, 2011 -- CVE ID: CVE-2011-1867 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Hewlett-Packard -- Affected Products:...
HP iNode Management Center iNodeMngChecker.exe Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP H3C/3Com iNode Management Center. Authentication is not required to exploit this vulnerability. The flaw exists within the iNOdeMngChecker.exe component which listens by default on TCP port 9090...