28 matches found
PT-2025-30187 · Unknown · Huashengdun Webssh
Name of the Vulnerable Software and Affected Versions: Huashengdun WebSSH versions up to 1.6.2 Description: A problematic issue exists in Huashengdun WebSSH related to the Login Page component. The manipulation of the hostname/port argument can lead to cross site scripting. This issue may be...
Cassia Networks Access Controller Cross-Site Request Forgery Vulnerability
Cassia Networks Access Controller is an application from Cassia Networks, Inc. provides a powerful IoT network management solution. A security vulnerability exists in Cassia Networks Access Controller version 2.1.1.2303271039, which stems from a cross-site request forgery CSRF vulnerability in th...
CVE-2021-37840
aaPanel through 6.8.12 allows Cross-Site WebSocket Hijacking CSWH involving OS commands within WebSocket messages at a ws:// URL for /webssh the victim must have configured Terminal with at least one host. Successful exploitation depends on the browser used by a potential victim e.g., exploitatio...
Cross site scripting
aaPanel through 6.8.12 allows Cross-Site WebSocket Hijacking CSWH involving OS commands within WebSocket messages at a ws:// URL for /webssh the victim must have configured Terminal with at least one host. Successful exploitation depends on the browser used by a potential victim e.g., exploitatio...
CVE-2021-37840
aaPanel through 6.8.12 allows Cross-Site WebSocket Hijacking CSWH involving OS commands within WebSocket messages at a ws:// URL for /webssh the victim must have configured Terminal with at least one host. Successful exploitation depends on the browser used by a potential victim e.g., exploitatio...
WebSSH for iOS 14.16.10 - (mashREPL) Denial of Service Exploit
Exploit Title: WebSSH for iOS 14.16.10 - 'mashREPL' Denial of Service PoC Author: Luis Martinez Vendor Homepage: https://apps.apple.com/mx/app/webssh-ssh-client/id497714887 Software Link: App Store for iOS devices Tested Version: 14.16.10 Vulnerability Type: Denial of Service DoS Local Tested on...
WebSSH for iOS 14.16.10 - 'mashREPL' Denial of Service (PoC)
Exploit Title: WebSSH for iOS 14.16.10 - 'mashREPL' Denial of Service PoC Author: Luis Martinez Discovery Date: 2021-05-18 Vendor Homepage: https://apps.apple.com/mx/app/webssh-ssh-client/id497714887 Software Link: App Store for iOS devices Tested Version: 14.16.10 Vulnerability Type: Denial of...
WebSSH For iOS 14.16.10 Denial Of Service
Exploit Title: WebSSH for iOS 14.16.10 - 'mashREPL' Denial of Service PoC Author: Luis Martinez Discovery Date: 2021-05-18 Vendor Homepage: https://apps.apple.com/mx/app/webssh-ssh-client/id497714887 Software Link: App Store for iOS devices Tested Version: 14.16.10 Vulnerability Type: Denial of...