17 matches found
MiniDVBLinux 5.4 - Change Root Password
Exploit Title: MiniDVBLinux 5.4 - Change Root Password Exploit Author: LiquidWorm MiniDVBLinux 5.4 Change Root Password PoC Vendor: MiniDVBLinux Product web page: https://www.minidvblinux.de Affected version: =5.4 Summary: MiniDVBLinuxTM Distribution MLD. MLD offers a simple way to convert a...
WebIf OutConfig Parameter Local File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/24516/info WebIf is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view files and execute local scripts...
OpenPLI Webif Arbitrary Command Execution Vulnerability
Some Dream Boxes with OpenPLI version 3 beta images are vulnerable to OS command injection in the Webif 6.0.4 web interface. This is a blind injection, which means that you will not see any output of your command. A ping command can be used for testing the vulnerability. This Metasploit module ha...
OpenPLI Webif Arbitrary Command Execution
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'OpenPLI Webif Arbitrary Command...
OpenPLI Webif Arbitrary Command Execution
Some Dream Boxes with OpenPLI v3 beta Images are vulnerable to OS command injection in the Webif 6.0.4 Web Interface. This is a blind injection, which means that you will not see any output of your command. A ping command can be used for testing the vulnerability. This module has been tested in a...
Cross site scripting
Cross-site scripting XSS vulnerability in cgi-bin/webif.exe in ifnet WebIf allows remote attackers to inject arbitrary web script or HTML via the cmd parameter...
CVE-2007-5673
Cross-site scripting XSS vulnerability in cgi-bin/webif.exe in ifnet WebIf allows remote attackers to inject arbitrary web script or HTML via the cmd parameter...
CVE-2007-5673
CVE-2007-5673 is a confirmed cross-site scripting (XSS) vulnerability in the device’s web interface: specifically the cgi-bin/webif.exe component of the ifnet WebIf. The issue allows remote attackers to inject arbitrary web script or HTML via the cmd parameter, resulting in likely client-side scr...
CVE-2007-5673
Cross-site scripting XSS vulnerability in cgi-bin/webif.exe in ifnet WebIf allows remote attackers to inject arbitrary web script or HTML via the cmd parameter...
[Full-disclosure] ifnet.it WEBIF XSS Vulnerability
----------------------------- || WWW.SMASH-THE-STACK.NET || ----------------------------- || ADVISORY: IFNET.IT WEBIF XSS VULNERABILITY || 0x00: ABOUT ME || 0x01: DATELINE || 0x02: INFORMATION || 0x03: EXPLOITATION || 0x04: GOOGLE DORK || 0x05: RISK LEVEL || 0x00: ABOUT ME Author: SkyOut Date:...
Directory traversal
Directory traversal vulnerability in webif.cgi in ifnet WEBIF allows remote attackers to include and execute arbitrary local files a .. dot dot in the outconfig parameter...
CVE-2007-3266
Directory traversal vulnerability in webif.cgi in ifnet WEBIF allows remote attackers to include and execute arbitrary local files a .. dot dot in the outconfig parameter...
CVE-2007-3266
Directory traversal vulnerability in webif.cgi in ifnet WEBIF allows remote attackers to include and execute arbitrary local files a .. dot dot in the outconfig parameter...
CVE-2007-3266
CVE-2007-3266 affects the ifnet WEBIF web interface. The vulnerability is a directory traversal in the webif.cgi module via the outconfig parameter (dot-dot/../../). This allows remote attackers to include and execute arbitrary local files on the server. Evidence from NVD confirms the description...
WebIf - 'OutConfig' Local File Inclusion
source: https://www.securityfocus.com/bid/24516/info WebIf is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view files and execute local scripts...
WebIf - OutConfig Local File Inclusion
WebIf - OutConfig Local File Inclusion source: https://www.securityfocus.com/bid/24516/info WebIf is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view files and execute local scripts...
JVN#97422426 Hyper NIKKI System cross-site request forgery vulnerability
Impact If a weblog administrator accesses a malicious web page, an attacker could add, alter, or delete the weblog text. If the weblog text is successfully altered, the attacker could perform a cross-site scripting attack to steal cookie information of weblog readers including weblog administrato...