14 matches found
EUVD-2020-6666
Malware in sbrugna...
CVE-2024-10046
The افزونه پیامک ووکامرس Persian WooCommerce SMS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of removequeryarg without appropriate escaping on the URL in all versions up to, and including, 7.0.5. This makes it possible for unauthenticated attackers to injec...
CVE-2025-31941
An unauthenticated attacker can obtain a list of smart devices by knowing a valid username...
CVE-2020-22169
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\appointment-history.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
CVE-2018-7532
Unauthentication vulnerabilities have been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which may allow remote code execution...
Remote code execution
Unauthentication vulnerabilities have been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which may allow remote code execution...
CVE-2018-7532
CVE-2018-7532 affects Geutebruck IP cameras: G-Cam/EFD-2250 v1.12.0.4 and Topline TopFD-2125 v3.15.1, with an unauthenticated remote code execution vulnerability due to improper authentication (CWE-287). The CVSS v3 base score is 9.8 (CRITICAL); vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, indica...
CVE-2018-7532
Unauthentication vulnerabilities have been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which may allow remote code execution...
SimpleSAMLphp CBC Mode Encryption Unauthentication Vulnerability
SimpleSAMLphp is a set of PHP authentication applications that implement the SAML 2.0 service provider and identity provider features . A security vulnerability exists in SimpleSAMLphp 1.14.12 and earlier versions. An attacker can exploit this vulnerability to conduct a man-in-the-middle attack a...
IBM Informix Dynamic Server / Informix Open Admin Tool - DLL Injection / Remote Code Execution / Heap Buffer Overflow
Vulnerabilities Summary The following advisory describes six 6 vulnerabilities found in Informix Dynamic Server and Informix Open Admin Tool. IBM Informix Dynamic Server Exceptional, low maintenance online transaction processing OLTP data server for enterprise and workgroup computing. IBM Informi...
Horde Groupware Webmail 345 - Multiple Remote Code Executions
Horde Groupware Webmail 345 - Multiple Remote Code Executions Source: https://blogs.securiteam.com/index.php/archives/3107 Vulnerabilities Summary The following advisory describes two 2 vulnerabilities found in Horde Groupware Webmail. Horde Groupware Webmail Edition is a free, enterprise ready,...
PIKATEL 96338WS_ 96338L-2M-8M - DNS Change
PIKATEL 96338WS 96338L-2M-8M - DNS Change !/bin/bash PIKATEL 96338WS, 96338L-2M-8M Unauthenticated Remote DNS Change Exploit Copyright 2016 c Todor Donev https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Description: The vulnerability exist in the web interface, which is...
Barracuda - Multiple Unauthentication Logfile Downloads
Exploit Title: multiple Barracuda products logfile disclosure Date: 03/26/2014 Exploit Author: Juergen Grieshofer / 4CKnowLedge Author Homepage: https://4ck.eu/ Vendor Homepage: https://barracudalabs.com Software Link: https://firewall.ptest.cudasvc.com/ Firmware v6.1.4.008 2014-02-18 08:06:34...
The Difficulty of Un-Authentication
By Bruce Schneier In computer security, a lot of effort is spent on the authentication problem. Whether it’s passwords, secure tokens, secret questions, image mnemonics, or something else, engineers are continually coming up with more complicated — and hopefully more secure — ways for you to prov...