EUVD-2019-14712

Malware in sbrugna...

VulnCheck KEV: CVE-2020-14993

A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900, and Vigor300B devices before 1.5.1.1 allows remote attackers to execute arbitrary code via the formuserphonenumber parameter in an authusersms action to mainfunction.cgi...

DrayTek Vigor 1.5.1.1 (CVE-2020-19664)

The version of DrakTek Vigor installed on the remote host is prior to 1.5.1.1. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-19664 advisory. - DrayTek Vigor2960 1.5.1 allows remote command execution via shell metacharacters in a toLogin2FA action to mainfunction.cgi...

Digi Passport 缓冲区错误漏洞

Digi Passport is a series of console servers from Digi USA. It provides secure remote access to computer systems and network devices. A security vulnerability exists in Digi Passport firmware prior to version 1.5.1.1, which stems from a buffer overflow in the function that constructs the Location...

WordPress <= 1.5.1.1 - SQL Injection

...

WordPress Core 1.5.1.1 - SQL Injection

!/usr/bin/perl -w SQL Injection Exploit for WordPress = 1.5.1.1 This exploit shows the username of the administrator of the blog and his password crypted in MD5, you must only choose the correct version of the target Related advisory: http://www.gentoo.org/security/en/glsa/glsa-200506-04.xml Patc...

WordPress 1.5 & 1.5.1.1 - SQL Injection

...