Lantronix SecureLinx Spider (SLS) 2.2+ - Cross-Site Scripting

Lantronix SecureLinx Spider SLS 2.2+ devices have XSS in the auth.asp login page. id: CVE-2018-10383 info: name: Lantronix SecureLinx Spider SLS 2.2+ - Cross-Site Scripting author: ritikchaddha severity: medium description: | Lantronix SecureLinx Spider SLS 2.2+ devices have XSS in the auth.asp...

EUVD-2018-2456

Malware in sbrugna...

EUVD-2005-2190

Malware in sbrugna...

CVE-2018-10383

Lantronix SecureLinx Spider SLS 2.2+ devices have XSS in the auth.asp login page...

Design/Logic Flaw

Lantronix SecureLinx Spider SLS 2.2+ devices have XSS in the auth.asp login page...

CVE-2018-10383

Lantronix SecureLinx Spider SLS 2.2+ devices have XSS in the auth.asp login page...

Lantronix SecureLinx Console Manager (SLC) Detection

Binary data 6786.prm...

CVE-2005-2189

Lantronix SecureLinx console server running firmware 2.0 and 3.0 stores /etc/ssh under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as SSH private keys...

CVE-2005-2189

The CVE-2005-2189 issue affects Lantronix SecureLinx console server running firmware 2.0 and 3.0. The vulnerability arises because the web server stores /etc/ssh under the web document root with insufficient access control, allowing remote attackers to obtain sensitive information such as SSH pri...