Edimax IC-3030iWn - UDP Packet Password Information Disclosure

Edimax IC-3030iWn - UDP Packet Password Information Disclosure source: https://www.securityfocus.com/bid/54006/info Edimax IC-3030iWn is prone to an information-disclosure vulnerability. Successful exploits will allow a remote attacker to gain access to sensitive information. Information obtained...

Edimax IC-3030iWn Web Admin Auth Bypass exploit

Exploit for hardware platform in category web applications This exploit against: - Edimax IC-3030i - Edimax IC-3015 - Airlive WN 500 !/usr/bin/env python """ Exploit Title: Edimax IC-3030iWn Web Admin Auth Bypass exploit Date: 4 April 2012 Exploit Author: email protected, @y3dips URL:...

Edimax IC-3030iWn Authentication Bypass

!/usr/bin/env python """ Exploit Title: Edimax IC-3030iWn Web Admin Auth Bypass exploit Date: 4 April 2012 Exploit Author: [email protected], @y3dips URL: http://echo.or.id Vendor Homepage: http://www.edimax.com Sourcecode Link: http://www.edimax.com/en/producedetail.php?pdid=352&pl1id=8&pl2id=91...

IBM Tivoli Directory Server Web Admin tool 6.1.0.x < 6.1.0.48 / 6.2.0.x < 6.2.0.22 / 6.3.0.x < 6.3.0.11 Cross-Site Scripting Vulnerability

Binary data 6478.prm...

CVE-2012-0740

Cross-site scripting XSS vulnerability in the Web Admin Tool in IBM Tivoli Directory Server TDS 6.2 before 6.2.0.22 and 6.3 before 6.3.0.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in the Web Admin Tool in IBM Tivoli Directory Server TDS 6.2 before 6.2.0.22 and 6.3 before 6.3.0.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2012-0740

Cross-site scripting XSS vulnerability in the Web Admin Tool in IBM Tivoli Directory Server TDS 6.2 before 6.2.0.22 and 6.3 before 6.3.0.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2011-5078

The web administration interface in the server in Sybase M-Business Anywhere 6.7 before ESD 3 and 7.0 before ESD 7 does not require admin authentication for unspecified scripts, which allows remote authenticated users to list or delete user accounts, modify passwords, or read log files via HTTP...

ATMAIL WebMail Admin v6.3.4 - Multiple Vulnerabilities

Document Title: =============== ATMAIL WebMail Admin v6.3.4 - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=376 Release Date: ============= 2012-01-07 Vulnerability Laboratory ID VL-ID: ==================================== 376...

(SWAT): XSS flaw in Change Password page

Cross-site scripting XSS vulnerability in the chgpasswd function in web/swat.c in the Samba Web Administration Tool SWAT in Samba 3.x before 3.5.10 allows remote authenticated administrators to inject arbitrary web script or HTML via the username parameter to the passwd program aka the user field...

Core topology of the Tourist Information Portal system 1.1 injection vulnerability-vulnerability warning-the black bar safety net

Core topology of the tourist information portal of the system is Yongzhou core topology of the tourist information web site management system includes a corporate web site commonly used in a variety of functions, with a complete backend management system, The present program without any feature...

PT-2011-1443 · Apache · Apache Couchdb

Name of the Vulnerable Software and Affected Versions: Apache CouchDB versions 0.8.0 through 1.0.1 Description: The issue concerns multiple cross-site scripting XSS vulnerabilities in the web administration interface of Apache CouchDB. These vulnerabilities allow remote attackers to inject...

Wikleaks struggles back online at new Domain/ Web-address !

Wikileaks is struggling to return at a new web address, wikileaks.ch, after hoster EveryDNS.net threw in the towel in the face of a sustained distributed denial of service DDoS attack. This too appears to have gone down intermittently, whether from service overload or a new DDoS. A ping to the...

MongoDB Web Admin Detection (HTTP)

HTTP based detection of the MongoDB Web Admin. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

phpBazar 2.1.1 Remote File Inclusion

Title: phpBazar V2.1.1 stable rfi Vulnerability Author: Sid3^effects Published: 2010-06-03 Verison: 2.1.1 stable vendor: SmartISoft ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 888 888. .8888. .8' 888 888 888 .8'888. .8' 888 888 888.8' 888.8' 888 88b ooo 888' 888' o888o...

Lotus Domino Web Administrator - XSS

Application: Lotus Domino Versions Affected: Lotus Domino Web Administrator 6.5 and 8.5.1 Vendor URL: IBM Bugs: XSS Exploits: YES Reported: 22.04.2010 Vendor response: 22.04.2010 Date of Public Advisory: 24.03.2013 Reference: IBM CVE number: CVE-2013-0488 Author: Dmitry Chastukhin ERPScan...

Microsoft IIS 6.0 Web ADMIN认证饶过

No description provided by source...

Websense Email Security multiple security vulnerabilities

Crossite scripting and DoS in Web administration interface...

CVE-2008-6734

Directory traversal vulnerability in Public/index.php in Keller Web Admin CMS 0.94 Pro allows remote attackers to include and execute arbitrary local files via a .. dot dot in the action parameter...

Directory traversal

Directory traversal vulnerability in Public/index.php in Keller Web Admin CMS 0.94 Pro allows remote attackers to include and execute arbitrary local files via a .. dot dot in the action parameter...