22 matches found
EUVD-2020-27904
Malware in sbrugna...
EUVD-2020-27905
Malware in sbrugna...
CVE-2020-6758
A cross-site scripting XSS vulnerability in Option/optionsAll.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows remote attackers to inject arbitrary web script or HTML via the ContentFrame parameter...
CVE-2020-6757
contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows authenticated attackers to remotely execute code via the name parameter...
CVE-2020-6756
languageOptions.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows unauthenticated attackers to remotely execute code via the lang parameter...
Rasilient PixelStor Remote Code Execution (CVE-2020-6756)
A remote code execution vulnerability exists in Rasilient PixelStor. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Rasilient PixelStor 5000 Cross-Site Scripting Vulnerability
The Rasilient PixelStor 5000 is a low-cost, high-bandwidth and high-availability RAID disk array. A cross-site scripting vulnerability exists in Option/optionsAll.php in the Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI version. A remote attacker can exploit this vulnerability to inject...
Rasilient PixelStor 5000 Remote Code Execution Vulnerability
The Rasilient PixelStor 5000 is a RAID disk array. A remote code execution vulnerability exists in languageOptions.php in the Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI version. An unauthenticated attacker can exploit this vulnerability to remotely execute code via the lang parameter...
CVE-2020-6757
contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows authenticated attackers to remotely execute code via the name parameter...
CVE-2020-6758
A cross-site scripting XSS vulnerability in Option/optionsAll.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows remote attackers to inject arbitrary web script or HTML via the ContentFrame parameter...
CVE-2020-6758
A cross-site scripting XSS vulnerability in Option/optionsAll.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows remote attackers to inject arbitrary web script or HTML via the ContentFrame parameter...
CVE-2020-6756
languageOptions.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows unauthenticated attackers to remotely execute code via the lang parameter...
CVE-2020-6757
contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows authenticated attackers to remotely execute code via the name parameter...
Code injection
languageOptions.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows unauthenticated attackers to remotely execute code via the lang parameter...
Code injection
contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows authenticated attackers to remotely execute code via the name parameter...
Cross site scripting
A cross-site scripting XSS vulnerability in Option/optionsAll.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows remote attackers to inject arbitrary web script or HTML via the ContentFrame parameter...
CVE-2020-6756
CVE-2020-6756 affects Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version). The vulnerability is in languageOptions.php and allows unauthenticated remote code execution via the lang parameter. Connected sources confirm an RCE condition with this PHP file, affecting PixelStor 5000 K devices;...
CVE-2020-6756
languageOptions.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows unauthenticated attackers to remotely execute code via the lang parameter...
CVE-2020-6758
The CVE-2020-6758 entry corresponds to a cross-site scripting (XSS) vulnerability in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version), specifically in Option/optionsAll.php, exploitable through the ContentFrame parameter. This is confirmed across multiple connected documents (Red Hat, C...
CVE-2020-6757
contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 KDI Version allows authenticated attackers to remotely execute code via the name parameter...