30 matches found
GE IC695CHS016 PACSystems RX3i Controller Base Detection
Binary data 755376.prm...
RAWR - Rapid Assessment of Web Resources
Features A customizable CSV containing ordered information gathered for each host, with a field for making notes/etc. An elegant, searchable, JQuery-driven HTML report that shows screenshots, diagrams, and other information. A report on relevent security headers, courtesy of SmeegeSec. a CSV Thre...
IPv6 DNS Guessing Notes
A hostname with an IPv6 address is stored as a AAAA resource record in DNS see AAAA record. There are many DNS hostname bruteforcing tools, personally I like Fierce. Suppose we have already run our hostname bruteforcing tool against a target domain e.g. facebook.com. Below we use dig to do a AAAA...
JVN#13313061: TOSHIBA TEC e-Studio series vulnerable to cross-site request forgery
e-Studio provided by TOSHIBA TEC CORPORATION is a multi-function peripheral MFP. Multiple e-Studio series products contain a vulnerability in web-based management utility, which may result in a cross-site request forgery. Impact If the administrator views a malicious page while logged into the...
CVE-2012-6493
Cross-site request forgery CSRF vulnerability in Rapid7 Nexpose Security Console before 5.5.4 allows remote attackers to hijack the authentication of unspecified victims for requests that delete scan data and sites via a request to data/site/delete...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in Rapid7 Nexpose Security Console before 5.5.4 allows remote attackers to hijack the authentication of unspecified victims for requests that delete scan data and sites via a request to data/site/delete...
CVE-2012-6493
Cross-site request forgery CSRF vulnerability in Rapid7 Nexpose Security Console before 5.5.4 allows remote attackers to hijack the authentication of unspecified victims for requests that delete scan data and sites via a request to data/site/delete...
CVE-2012-6493
CVE-2012-6493: Multiple CSRF vulnerabilities in Rapid7 Nexpose Security Console
HD Moore, Project Sonar Crowdsources Vulnerability Analysis
The state of embedded device security is poor, and there hasn’t been much in the way of discussion to the contrary. It’s well established that vendors skimp on security, selling for example, routers and other networking gear protected only by default passwords, or other critical devices engineere...
SSH Sentinel 1.1 VPN Detection
Binary data 2927.prm...