EUVD-2012-2968

Malware in sbrugna...

CVE-2011-4787

A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via unspecified vectors, a different vulnerability than CVE-2011-2404 and CVE-2011-4786...

CVE-2012-6460

Opera before 11.67 and 12.x before 12.02 allows remote attackers to cause truncation of a dialog, and possibly trigger downloading and execution of arbitrary programs, via a crafted web site...

CVE-2010-1517

The GIGABYTE Dldrv2 ActiveX control 1.4.206.11 allows remote attackers to 1 download arbitrary programs onto a client system, and execute these programs, via vectors involving the dl method; and 2 download arbitrary programs onto a client system via vectors involving the SetDLInfo method in...

CVE-2021-37401

An attacker may obtain the user credentials from file servers, backup repositories, or ZLD files saved in SD cards. As a result, the PLC user program may be uploaded, altered, and/or downloaded...

CVE-2021-37400

An attacker may obtain the user credentials from the communication between the PLC and the software. As a result, the PLC user program may be uploaded, altered, and/or downloaded...

CVE-2021-37172

A vulnerability has been identified in SIMATIC S7-1200 CPU family incl. SIPLUS variants V4.5.0. Affected devices fail to authenticate against configured passwords when provisioned using TIA Portal V13. This could allow an attacker using TIA Portal V13 or later versions to bypass authentication an...

SIMATIC S7-1200 授权问题漏洞

Siemens SIMATIC S7-1200 is an S7-1200 series PLC programmable logic controller from Siemens, Germany. The Siemens SIMATIC S7-1200 suffers from a security vulnerability that stems from the device's inability to authenticate itself based on a configured password. An attacker can exploit the...

Rockwell Automation Allen Bradley Micrologix 1400 Series B FRN Denial of Service Vulnerability (CNVD-2018-07297)

Allen Bradley Micrologix 1400 Series B is a programmable logic controller from Rockwell Automation. A denial of service vulnerability exists in the program download feature of the Allen Bradley Micrologix 1400 Series B version 21.2 and lower. An attacker could exploit this vulnerability by sendin...

Allen Bradley Micrologix 1400 Series B Ladder Logic Program Download Device Fault Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists in the program download functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a device fault resulting in halted operations. An attacker can send an unauthenticated packet to...

investment-analysis.ru XSS vulnerability

Vulnerable URL: http://investment-analysis.ru/program/programIA/download.php?location=%3Csvg/onload=alert/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 29.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 837083 VI...

CVE-2015-2114

HP Support Solution Framework before 11.51.0049 allows remote attackers to download an arbitrary program onto a client machine and execute this program via unspecified vectors...

CVE-2012-3022

The SaveToFile method in a certain ActiveX control in TrendDisplay.dll in Canary Labs TrendLink 9.0.2.27051 and earlier does not properly restrict the creation of files, which allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via a crafted w...

CVE-2012-2990

The CVE-2012-2990 entry concerns the MarkAny ContentSAFER MASetupCaller ActiveX control (MASetupCaller.dll) bundled with Samsung KIES. The vulnerability affects versions prior to 1.4.2012.508 and is triggered by certain method calls in the ActiveX, allowing a remote attacker to download and execu...

Shopv8 Mall system v12. 0 7 Cookie injection vulnerability-vulnerability warning-the black bar safety net

! Shopv8 Mall system v12. 0 7, program download: http://www.mycodes.net/20/1099.htm Vulnerability file: list. asp http://127.0.0.1/list.asp?id=338 Injection transit-blast account password http://127.0.0.1:808/jmCook.asp?jmdcw=338%20union%20select%201,2,3,4,5,6,7,8,9,1 0,1 1,1 2,1...

News website Management System CMS v4. 0 the following version of the vulnerability-vulnerability warning-the black bar safety net

| I recently saw many blog friends called me prone to such vulnerabilities article, I today in an article, I'm in the webmaster's home found the non-reception of the program, so I'm down under take a look at this program how safe, and this program download to people more, in the webmasters home...

Code injection

The CSDWebInstallerCtrl ActiveX control in CSDWebInstaller.ocx in Cisco Secure Desktop CSD allows remote attackers to download an unintended Cisco program onto a client machine, and execute this program, by identifying a Cisco program with a Cisco digital signature and then renaming this program ...

Batch Picture Watemark 1.0 (.jpg File) Local Crash PoC

Exploit for unknown platform in category dos / poc ====================================================== Batch Picture Watemark 1.0 .jpg File Local Crash PoC ====================================================== Anti-Security Research Team & Security Institute + Bug : Batch Picture Watemark v1....

EesySec Personal Firewall Remote Buffer Overflow Exploit

!/usr/bin/perl + Bug : EesySec Personal Firewall Remote Buffer Overflow Exploit + program Download : http://www.effectmatrix.com/easysec/ + Author : theEdit0r + Contact me : the3dit0ratYahoodotcoM + Greetz to all my friends + Tested on: Windows XP Pro SP3 + web site: Expl0iters.ir Anti-security.i...