Sql injection

Dynacolor FCM-MB40 v1.2.0.0 devices allow remote attackers to execute arbitrary commands via a crafted parameter to a CGI script, as demonstrated by sed injection in cgi-bin/camctrlsaveprofile.cgi save parameter and cgi-bin/ddns.cgi...

Authorization

/usr/sbin/default.sh and /usr/apache/htdocs/cgi-bin/admin/hardfactorydefault.cgi on Dynacolor FCM-MB40 v1.2.0.0 devices implement an incomplete factory-reset process. A backdoor can persist because neither system accounts nor the set of services is reset...

CVE-2019-13401

Dynacolor FCM-MB40 devices (v1.2.0.0) are affected by a CSRF vulnerability in all scripts under cgi-bin/. The CNVD entry describes the issue as a cross-site request forgery vulnerability that arises because the product does not adequately verify the origin or authenticity of data, enabling an att...

CVE-2019-13398

CVE-2019-13398 affects Dynacolor FCM-MB40 v1.2.0.0 devices. The vulnerability is a command-injection flaw in CGI scripts (cgi-bin/camctrl_save_profile.cgi and cgi-bin/ddns.cgi) that allows a remote attacker to execute arbitrary commands by supplying crafted parameters. This stems from unsafe inpu...

FortiCam FCM-MB40 Code Execution / Privilege Escalation

Original posting: https://xor.cat/2019/06/19/fortinet-forticam-vulns/ Background In March of 2019 I discovered five vulnerabilities in Fortinet's FortiCam FCM-MB401 product. Part-way through disclosing this vulnerability, I discovered that the FCM-MB40 is manufactured by a company called Dynacolo...

Getleft 1.2 - Remote Buffer Overflow Proof of Concept

No description provided by source. !/usr/bin/perl Getleft v1.2.0.0 DoS PoC Author: Koshi Application: Getleft v1.2 Publisher: Andres Garcia http://personal1.iddeo.es/andresgarci/getleft/english/index.html Description: Website Downloader, for such things as offline browsing. Tested On: Windows XP...