8 matches found
STVS ProVision 5.9.10 Cross Site Scripting
STVS ProVision 5.9.10 Authenticated Reflected Cross-Site Scripting Vendor: STVS SA Product web page: http://www.stvs.ch Platform: Ruby Affected version: 5.9.10 build 2885-3a8219a 5.9.9 build 2882-7c3b787 5.9.7 build 2871-a450938 5.9.1 build 2771-1bbed11 5.9.0 build 2701-6123026 5.8.6 build...
STVS ProVision 5.9.10 - File Disclosure (Authenticated)
Exploit Title: STVS ProVision 5.9.10 - File Disclosure Authenticated Date: 19.01.2021 Exploit Author: LiquidWorm Vendor Homepage: http://www.stvs.ch STVS ProVision 5.9.10 archive.rb Authenticated File Disclosure Vulnerability Vendor: STVS SA Product web page: http://www.stvs.ch Platform: Ruby...
STVS ProVision 5.9.10 - Cross-Site Request Forgery (Add Admin)
Exploit Title: STVS ProVision 5.9.10 - Cross-Site Request Forgery Add Admin Date: 19.01.2021 Exploit Author: LiquidWorm Vendor Homepage: http://www.stvs.ch STVS ProVision 5.9.10 Cross-Site Request Forgery Add Admin Vendor: STVS SA Product web page: http://www.stvs.ch Platform: Ruby Affected...
Immunity Canvas: SAMBA_IS_KNOWN_PIPENAME
Name| sambaisknownpipename ---|--- CVE| CVE-2017-7494 Exploit Pack| CANVAS Description| SAMBA 4.x remote exploit Notes| References: https://www.samba.org/samba/security/CVE-2017-7494.html CVE Name: CVE-2017-7494 VENDOR: Samba Notes: In order to use this exploit you need: Write access to a SAMBA...
Linux Kernel (Ubuntu 14.04.3) - 'perf_event_open()' Can Race with execve() (Access /etc/
Exploit for linux platform in category local exploits Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=807 A race condition in perfeventopen allows local attackers to leak sensitive data from setuid programs. perfeventopen associates with a task as follows:...
Linux Kernel (Ubuntu 14.04.3) - perf_event_open() Can Race with execve() (Access etcshadow)
Linux Kernel Ubuntu 14.04.3 - perfeventopen Can Race with execve Access etcshadow Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=807 A race condition in perfeventopen allows local attackers to leak sensitive data from setuid programs. perfeventopen associates with a task as...
Linux Kernel (Ubuntu 14.04.3) - 'perf_event_open()' Can Race with execve() (Access /etc/shadow)
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=807 A race condition in perfeventopen allows local attackers to leak sensitive data from setuid programs. perfeventopen associates with a task as follows: SYSCALLDEFINE5perfeventopen, struct perfeventattr user , attruptr, pidt, pid...
Thomson CableHome Gateway (DWG849) Cable Modem Gateway - Information Exposure Vulnerability
Exploit for hardware platform in category remote exploits Exploit Title: Information Exposure via SNMP on Thomson CableHome Gateway MODEL: DWG849 Cable Modem Gateway Google Dork: n/a Date: 09/18/2015 Exploit Author: Matt Dunlap Vendor Homepage:...