Access Control Error Vulnerability in Multiple TP-LINK Products

TP-LINK IPC TL-IPC223P-6 and so on are all different models of network camera products from China P&L TP-LINK. An access control error vulnerability exists in the /usr/lib/lua/luci/websys.lua file in several TP-LINK products, which stems from the program's use of hard-coded passwords, which could...

CVE-2018-11482

/usr/lib/lua/luci/websys.lua on TP-LINK IPC TL-IPC223P-6, TL-IPC323K-D, TL-IPC325KP-, and TL-IPC40A-4 devices has a hardcoded zMiVw8Kw0oxKXL0 password...

Hardcoded credentials

/usr/lib/lua/luci/websys.lua on TP-LINK IPC TL-IPC223P-6, TL-IPC323K-D, TL-IPC325KP-, and TL-IPC40A-4 devices has a hardcoded zMiVw8Kw0oxKXL0 password...

Auto Dealership Vehicle Showroom WebSys 1.0 - Multiple Vulnerabilities

Auto Dealership Vehicle Showroom WebSys 1.0 - Multiple Vulnerabilities Exploit Title: Auto Dealership & Vehicle Showroom WebSys 1.0 - Persistent Cross-Site Scripting / Cross-Site Request Forgery / Admin panel Authentication bypass Date: 2018-05-21 Exploit Author: Borna nematzadeh L0RD or...

Auto Dealership And Vehicle Showroom WebSys 1.0 XSS / CSRF / SQL Injection

Exploit Title: Auto Dealership & Vehicle Showroom WebSys 1.0 - Persistent Cross-Site Scripting / Cross-Site Request Forgery / Admin panel Authentication bypass Date: 2018-05-21 Exploit Author: Borna nematzadeh L0RD or [email protected] Vendor Homepage:...