Database Weak Password Vulnerability in City Security Monitoring DSS System of Zhejiang Dahua Technology Co.

Zhejiang Dahua Technology Co., Ltd. is a supplier of surveillance products and solution service provider. Zhejiang Dahua Technology Co., Ltd. city security monitoring DSS system has a weak password vulnerability in the database, which can be exploited by attackers to obtain database data...

The vulnerability of the Security SiteProtector System’s security protection mechanism allows a hacker to input their own arguments.

The vulnerability of the Security SiteProtector System security system exists due to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a malicious actor, operating remotely, to insert their own commands...

iLoan大型P2P借贷系统_articleview_page_article_id注入

No description provided by source...

Design/Logic Flaw

Comcast XFINITY Home Security System does not properly maintain base-station communication, which allows physically proximate attackers to defeat sensor functionality by interfering with ZigBee 2.4 GHz transmissions...

CVE-2016-2398

CVE-2016-2398 affects the Comcast XFINITY Home Security System. The vulnerability arises from improper maintenance of base-station communication, allowing physically proximate attackers to defeat sensor functionality by interfering with ZigBee 2.4 GHz transmissions. The linked records confirm the...

Comcast Xfinity home security system is exposed to serious vulnerabilities-vulnerability warning-the black bar safety net

Recently, researchers found that Comcast Xfinity home security system a security vulnerability exists, an attacker can not trigger the alarm of the premise into the user homes. Comcast（Comcast is the largest U.S. cable TV company, but also broadband Internet and IP telephony service provider...

RSI Video Technologies Videofied security system Frontel software uses an insecure custom protocol

Overview RSI Video Technologies' Videofied security system uses a software named Frontel to monitor alarm status. Frontel uses an insecure custom protocol to communicate with its Frontel server. Description Frontel uses a custom protocol running on TCP port 888. The protocol performs an...

Netease mailbox leaked battle network PayPal, etc. accounts may be hacked-vulnerability warning-the black bar safety net

The black bar safety net announced the discovery of Netease mailbox new vulnerability, this vulnerability may lead to Netease mailbox over a million data leaks, involving Netease mailbox-war network account number, PayPal account number and other network accounts fear will be affected, recommende...

The vulnerability of the Security SiteProtector System’s security protection mechanism allows a hacker to execute arbitrary web or HTML code.

The vulnerability of the Security SiteProtector System security system exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary web or HTML code remotely...

Alipay 9. 0 reset password function is defective, you can easily modify any user's password-vulnerability warning-the black bar safety net

As is well known, in the PayPal new upgrade of 9. 0 version cancel a user gesture password settings, the transition to“Big Data, risk control”protection. If the users phone does not have fingerprint unlock function, then on their mobile phones PayPal account can be directly accessed. !...

SQL Injection Vulnerability in Public Security Office System of Jiangsu Ouso Software Co.

Ltd. Public Security Office System is modeled after the entity public security organs institutions, functions, powers, etc., with the Internet as the carrier, supported by the comprehensive application of information technology, the entity public security organs with close contact with the people...

Webspell FIRSTBORN Movie-Addon Blind SQL Injection Vulnerability

No description provided by source. ======================================================================================== | Title : Webspell FIRSTBORN Movie-Addon Blind SQL Injection Vulnerability | Author : Easy Laster | Script : Webspell FIRSTBORN Movie-Addon | Site : www.firstborn.de | Price...

Webspell dailyinput Movie Addon 4.2.x SQL Injection Vulnerability

No description provided by source. ======================================================================================== | Title : Webspell 4.2.x dailyinput Movie-Addon SQL Injection Vulnerability | Author : Easy Laster | Script : Webspell 4.2.x dailyinput Movie-Addon | Site :...

Exclusive : New Touch ID hack allows hacker to unlock an iPhone by multiple fingerprints

The Iranian group defeated the very basic phenomenon of an iPhone Fingerprinting scanner, which allows them to unlock an iPhone device with multiple Fingerprints. Apple's iPhone 5s, was launched just available in stores two weeks before with a new feature of biometrics-based security system calle...

Exclusive : New Touch ID hack allows hacker to unlock an iPhone by multiple fingerprints

The Iranian group defeated the very basic phenomenon of an iPhone Fingerprinting scanner, which allows them to unlock an iPhone device with multiple Fingerprints. Apple‘s iPhone 5s, was launched just available in stores two weeks before with a new feature of biometrics-based security system calle...

airVisionNVR 1.1.13 - 'readfile()' Disclosure / SQL Injection

Exploit Title: airVisionNVR readfile disclosure and sql injection Google Dork: Date: Oct 13, 2012 Exploit Author: pennyGrit Vendor Homepage: http://www.ubnt.com/ Software Link: http://www.ubnt.com/downloads/airvision/airVision-v1.1.3-installer.exe Version: 1.1.13 Tested on: WinXP SP3 CVE: Possibl...

Directory traversal

Directory traversal vulnerability in javatesterinit.php in IBM Lotus Protector for Mail Security 2.1, 2.5, 2.5.1, and 2.8 and IBM ISS Proventia Network Mail Security System allows remote authenticated administrators to read arbitrary files via a .. dot dot in the template parameter...

CVE-2012-2202

Directory traversal vulnerability in javatesterinit.php in IBM Lotus Protector for Mail Security 2.1, 2.5, 2.5.1, and 2.8 and IBM ISS Proventia Network Mail Security System allows remote authenticated administrators to read arbitrary files via a .. dot dot in the template parameter...

CVE-2012-2955

This CVE affects IBM ISS Proventia Mail Security System and Lotus Protector for Mail Security. The vulnerability is cross-site scripting (XSS) in the administrative web interface, where an attacker can inject arbitrary JavaScript/HTML via the HTTP request query string (reflected XSS). This could ...

Webspell dailyinput Movie Addon 4.2.x SQL Injection Vulnerability

Exploit for php platform in category web applications ======================================================================================== | Title : Webspell 4.2.x dailyinput Movie-Addon SQL Injection Vulnerability | Author : Easy Laster | Script : Webspell 4.2.x dailyinput Movie-Addon | Site...