102 matches found
Sitecom WLM-2501 - Multiple Cross-Site Request Forgery Vulnerabilities
Sitecom WLM-2501 - Multiple Cross-Site Request Forgery Vulnerabilities +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Sitecom WLM-2501 new Multiple CSRF Vulnerabilities Date : 22-03-2012 Author :...
Sitecom WLM-2501 Cross Site Request Forgery
+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Sitecom WLM-2501 new Multiple CSRF Vulnerabilities Date : 22-03-2012 Author : Ivano Binetti http://www.ivanobinetti.com Vendor site :...
Sitecom WLM-2501 - Multiple Cross-Site Request Forgery Vulnerabilities
+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Sitecom WLM-2501 new Multiple CSRF Vulnerabilities Date : 22-03-2012 Author : Ivano Binetti http://www.ivanobinetti.com Vendor site :...
Sitecom WLM-2501 CSRF Vulnerabilities [2]
Exploit for hardware platform in category web applications +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Sitecom WLM-2501 new Multiple CSRF Vulnerabilities 2 Date : 22-03-2012 Author : Ivano Binet...
Sitecom WLM-2501 - Cross-Site Request Forgery
Sitecom WLM-2501 - Cross-Site Request Forgery +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Sitecom WLM-2501 Change Wireless Passphrase Date : 13-03-2012 Author : Ivano Binetti...
Sitecom WLM-2501 Cross Site Request Forgery
+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Sitecom WLM-2501 Change Wireless Passphrase Date : 13-03-2012 Author : Ivano Binetti http://www.ivanobinetti.com Vendor site :...
Sitecom WLM-2501 - Cross-Site Request Forgery
+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Sitecom WLM-2501 Change Wireless Passphrase Date : 13-03-2012 Author : Ivano Binetti http://www.ivanobinetti.com Vendor site :...
Sitecom WLM-2501 CSRF Vulnerabilities
Exploit for hardware platform in category web applications +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Sitecom WLM-2501 Change Wireless Passphrase Date : 13-03-2012 Author : Ivano Binetti...
CVE-2011-4503
The UPnP IGD implementation in Broadcom Linux on the Sitecom WL-111 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability...
Xxe
The UPnP IGD implementation in Broadcom Linux on the Sitecom WL-111 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability...
Xxe
The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-Tech CN-WF512 with firmware 1.83, Canyon-Tech CN-WF514 with firmware 2.08, Sitecom WL-153 with firmware before 1.39, and Sweex LB000021 with firmware 3.15 allows remote attackers...
Code injection
The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-Tech CN-WF512 with firmware 1.83, Canyon-Tech CN-WF514 with firmware 2.08, Sitecom WL-153 with firmware before 1.39, and Sweex LB000021 with firmware 3.15 allows remote attackers...
CVE-2011-4503
The CVE-2011-4503 issue affects Broadcom Linux on the Sitecom WL-111, specifically the UPnP IGD implementation. The vulnerability allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request toward the WAN interface, tied to an “external f...
CVE-2011-4502
The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-Tech CN-WF512 with firmware 1.83, Canyon-Tech CN-WF514 with firmware 2.08, Sitecom WL-153 with firmware before 1.39, and Sweex LB000021 with firmware 3.15 allows remote attackers...
CVE-2011-4503
The UPnP IGD implementation in Broadcom Linux on the Sitecom WL-111 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability...
Multiple Linksys/ ZyXel / Edimax / Sitecom routers UPnP problems
UPnP AddPortMapping request requires no authentication. It makes it possible to create mapping between any external port and internal IP/port. Additionally, insufficient paramters validation allows code execution on router itself...
TeamCal Pro <= 2.8.001 (app_root) Remote file Include Vulnerability
No description provided by source. Author:PSYCH@ [email protected] TeamCal Pro 2.8.001 approot Remote file inclusion Vulnerabilities Demo: www.lewe.com/tcpro/ Code: include $tcconfig'approot'."includes/footer.html.inc.php" ; Exploit...
CVE-2006-2560
Sitecom WL-153 router firmware before 1.38 allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which is not validated, as demonstrated by using AddPortMapping to forward arbitrary traffic...
Authentication flaw
Sitecom WL-153 router firmware before 1.38 allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which is not validated, as demonstrated by using AddPortMapping to forward arbitrary traffic...
CVE-2006-2560
The connected sources confirm a vulnerability in Sitecom WL-153 router firmware prior to 1.38. A UPnP request with a modified InternalClient parameter is not validated, allowing remote attackers to bypass access restrictions and perform unauthorized operations, demonstrated via AddPortMapping to ...