CVE-2025-20242

A vulnerability in the Cloud Connect component of Cisco Unified Contact Center Enterprise CCE could allow an unauthenticated, remote attacker to read and modify data on an affected device. This vulnerability is due to a lack of proper authentication controls. An attacker could exploit this...

mySCADA myPRO 操作系统命令注入漏洞

mySCADA myPRO is a professional HMI/SCADA system from mySCADA, Inc. designed for the visualization and control of industrial processes. An operating system command injection vulnerability exists in mySCADA myPRO that stems from an inability to properly neutralize a POST request with an email...

CVE-2024-30220

Command injection vulnerability in PLANEX COMMUNICATIONS wireless LAN routers allows a network-adjacent unauthenticated attacker to execute an arbitrary command by sending a specially crafted request to a certain port. Note that MZK-MF300N is no longer supported, therefore the update for this...

Hardcoded credentials

In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, the product uses hard-coded credentials, which may allow an attacker to connect to a specific port...

Monero: RPC service DOS

The RPC service running on port 18081 or 28081, 38081 was vulnerable to a denial-of-service attack due to a loop iterating until the maximum range of a 64-bit unsigned integer. The vulnerability was present in all versions after the commit b030f207517f59a5122409398549a02ac23829ae, up to and...

PT-2024-1449 · Unknown · Rapid Scada

Name of the Vulnerable Software and Affected Versions: Rapid SCADA versions prior to 5.8.4 Description: The issue is related to the use of hard-coded credentials in the SCADA system. This could allow a remote attacker to gain full control over the system by connecting to a specific port...

How to Connect the SQL Server Using a Specific Port in Citrix Session Recording Server

This article is designed to describe how to connect the SQL Server using a specific port in Citrix Session Recording Server...

Authentication flaw

An improper authentication vulnerability exists in Avalanche version 6.3.x and below allows unauthenticated attacker to modify properties on specific port...

CVE-2022-44574

An improper authentication vulnerability exists in Avalanche version 6.3.x and below allows unauthenticated attacker to modify properties on specific port...

Exploit for Argument Injection in Atlassian Bitbucket

CVE-2022-36804-PoC Multithreaded exploit script for CVE-2022-3...

CVE-2022-25250

When connecting to a certain port Axeda agent All versions and Axeda Desktop Server for Windows All versions may allow an attacker to send a certain command to a specific port without authentication. Successful exploitation of this vulnerability could allow a remote unauthenticated attacker to sh...

Cisco Nexus 9000 Series Fabric Switches 输入验证错误漏洞

The Cisco Nexus 9000 Series Fabric Switches is a 9000 series fiber optic switch from Cisco. An input validation error vulnerability exists in the Cisco Nexus 9000 Series Fabric Switches that stems from the product's mishandling of TCP traffic on a specific port. The vulnerability can be exploited...

Exploit for CVE-2020-14882

CVE-2020–14882 Weblogic Unauthorized bypass RCE CVE-2020-14...

CVE-2020-3560

A vulnerability in Cisco Aironet Access Points APs could allow an unauthenticated, remote attacker to cause a denial of service DoS on an affected device. The vulnerability is due to improper resource management while processing specific packets. An attacker could exploit this vulnerability by...

FTPShell Client 6.70 Enterprise Edition Stack Buffer Overflow Exploit

This Metasploit module exploits a buffer overflow in the FTPShell client 6.70 Enterprise edition allowing remote code execution. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FTPShell client...

CVE-2018-10594

Delta Industrial Automation COMMGR from Delta Electronics versions 1.08 and prior with accompanying PLC Simulators DVPSimulator EH2, EH3, ES2, SE, SS2 and AHSIM5x0, AHSIM5x1 utilize a fixed-length stack buffer where an unverified length value can be read from the network packets via a specific...

CVE-2017-8155

The outdoor unit of Customer Premise Equipment CPE product B2338-168 V100R001C00 has a no authentication vulnerability on a certain port. After accessing the network between the indoor and outdoor units of the CPE, an attacker can deliver commands to the specific port of the outdoor unit and...