47 matches found
EUVD-2018-5270
Malware in sbrugna...
EUVD-2018-5266
Malware in sbrugna...
EUVD-2018-5271
Malware in sbrugna...
EUVD-2018-5269
Malware in sbrugna...
EUVD-2018-5268
Malware in sbrugna...
EUVD-2018-5272
Malware in sbrugna...
Buffalo TS5600D1206 Command Injection Vulnerability (CNVD-2019-00674)
The Buffalo TS5600D1206 is a network storage device from the Buffalo Group of Japan. A command injection vulnerability exists in the User.create method in the Buffalo TS5600D1206 version 3.61-0.10, which can be exploited to execute system commands with the 'name' parameter...
Buffalo TS5600D1206 Access Control Error Vulnerability (CNVD-2019-00678)
The Buffalo TS5600D1206 is a network storage device from the Buffalo Group of Japan. An access control error vulnerability exists in the nasapi in the Buffalo TS5600D1206 version 3.61-0.10, which can be exploited by an attacker to call a dangerous internal function with the 'method' parameter...
Buffalo TS5600D1206 Cross-Site Scripting Vulnerability
The Buffalo TS5600D1206 is a network storage device from the Buffalo Group of Japan. A cross-site scripting vulnerability exists in the detail.html file in the Buffalo TS5600D1206 version 3.61-0.10, which can be exploited by a remote attacker to execute JavaScript code via a "username" cookie...
Buffalo TS5600D1206 Access Control Error Vulnerability (CNVD-2019-00673)
The Buffalo TS5600D1206 is a network storage device from the Buffalo Group of Japan. An access control error vulnerability exists in the getportalinfo method in the Buffalo TS5600D1206 version 3.61-0.10, which can be exploited by an attacker to determine sensitive device information by sending a...
Buffalo TS5600D1206 Command Injection Vulnerability
The Buffalo TS5600D1206 is a network storage device from the Buffalo Group of Japan. A command injection vulnerability exists in the network.setauthsettings method in the Buffalo TS5600D1206 version 3.70-0.10, which can be exploited to execute system commands with the 'adminUsername' parameter an...
Buffalo TS5600D1206 Directory Traversal Vulnerability
The Buffalo TS5600D1206 is a network storage device from the Buffalo Group of Japan. A directory traversal vulnerability exists in the listfolders method in the Buffalo TS5600D1206 version 3.61-0.10, which can be exploited to list the contents of a directory with the 'path' parameter...
Buffalo TS5600D1206 Access Control Error Vulnerability
The Buffalo TS5600D1206 is a network storage device from the Buffalo Group of Japan. An access control error vulnerability exists in the nasapi in the Buffalo TS5600D1206 version 3.61-0.10, which can be exploited by an attacker to bypass authentication by sending a modified HTTP Host packet heade...
Command injection
System Command Injection in network.setauthsettings in Buffalo TS5600D1206 version 3.70-0.10 allows attackers to execute system commands via the adminUsername and adminPassword parameters...
CVE-2018-13323
Cross-site scripting in detail.html in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to execute JavaScript via the "username" cookie...
CVE-2018-13322
Directory traversal in listfolders method in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to list directory contents via the "path" parameter...
CVE-2018-13324
Incorrect access control in nasapi in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to bypass authentication by sending a modified HTTP Host header...
CVE-2018-13323
Cross-site scripting in detail.html in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to execute JavaScript via the "username" cookie...
CVE-2018-13321
Incorrect access controls in nasapi in Buffalo TS5600D1206 version 3.61-0.10 allow attackers to call dangerous internal functions via the "method" parameter...
Directory traversal
Directory traversal in listfolders method in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to list directory contents via the "path" parameter...