19 matches found
EUVD-2008-6250
Malware in sbrugna...
EUVD-2009-2069
Malware in sbrugna...
Linksys WRT160N 'apply.cgi' Cross-Site Scripting Vulnerability
No description provided by source...
Linksys系列未明远程代码执行漏洞
No description provided by source. !/usr/bin/php ?php / Exploit for 0day linksys unauthenticated remote code execution vulnerability. As exploited by TheMoon worm; Discovered in the wild on Feb 13, 2013 by Johannes Ullrich. I was hoping this would stay under-wraps until a firmware patch could be...
Linksys E-Series Remote Code Execution
!/usr/bin/php ?php / Exploit for 0day linksys unauthenticated remote code execution vulnerability. As exploited by TheMoon worm; Discovered in the wild on Feb 13, 2013 by Johannes Ullrich. I was hoping this would stay under-wraps until a firmware patch could be released, but it appears the cat is...
Linksys E-series - Remote Code Execution
Linksys E-series - Remote Code Execution !/usr/bin/php ?php / Exploit for 0day linksys unauthenticated remote code execution vulnerability. As exploited by TheMoon worm; Discovered in the wild on Feb 13, 2013 by Johannes Ullrich. I was hoping this would stay under-wraps until a firmware patch cou...
Linksys WRT160n apply.cgi Remote Command Injection
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex/proto/tftp' class Metasploit3 'Linksys...
CVE-2009-2073
Cross-site request forgery CSRF vulnerability in Linksys WRT160N wireless router hardware 1 and firmware 1.02.2 allows remote attackers to hijack the authentication of other users for unspecified requests via unknown vectors, as demonstrated using administrator privileges and actions...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in Linksys WRT160N wireless router hardware 1 and firmware 1.02.2 allows remote attackers to hijack the authentication of other users for unspecified requests via unknown vectors, as demonstrated using administrator privileges and actions...
CVE-2009-2073
Cross-site request forgery CSRF vulnerability in Linksys WRT160N wireless router hardware 1 and firmware 1.02.2 allows remote attackers to hijack the authentication of other users for unspecified requests via unknown vectors, as demonstrated using administrator privileges and actions...
CVE-2009-2073
The CVE-2009-2073 entry concerns the Linksys WRT160N family (hardware 1 and firmware 1.02.2). The vulnerability is described as a Cross-site Request Forgery (CSRF) that allows remote attackers to hijack the authentication of other users to perform unspecified requests; the administrator privilege...
Linksys WRT160N无线路由器跨站请求伪造漏洞
BUGTRAQ ID: 34448 WRT160N是Linksy最新推出的一款802.11n无线路由器。 WRT160N路由器的WEB管理接口没有正确地验证用户所提交的HTTP请求,如果管理员受骗访问了恶意网页的话就可能导致绕过安全限制执行管理操作。 0 Linksys WRT160N Linksys ------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: a href=http://www.linksys.com target=blank rel=external nofollowhttp://www.linksys.com/a...
Cross site scripting
Cross-site scripting XSS vulnerability in apply.cgi on the Linksys WRT160N allows remote attackers to inject arbitrary web script or HTML via the action parameter in a DHCPStatic operation...
CVE-2008-6280
Cross-site scripting XSS vulnerability in apply.cgi on the Linksys WRT160N allows remote attackers to inject arbitrary web script or HTML via the action parameter in a DHCPStatic operation...
CVE-2008-6280
Cross-site scripting XSS vulnerability in apply.cgi on the Linksys WRT160N allows remote attackers to inject arbitrary web script or HTML via the action parameter in a DHCPStatic operation...
CVE-2008-6280
The vulnerability affects the Linksys WRT160N router, exposed through the apply.cgi utility. The root cause is an XSS flaw in the DHCP_Static path caused by unsanitized input via the action parameter, allowing remote attackers to inject arbitrary web script or HTML. According to the sources, the ...
Linksys WRT160N apply.cgi文件跨站脚本漏洞
BUGTRAQ ID: 32496 WRT160N是Linksy最新推出的一款802.11n无线路由器。 Linksys WRT160N的apply.cgi文件没有正确地过滤对action参数所传送的输入便返回给了管理员,远程攻击者可以通过提交恶意请求导致在管理员的浏览器会话中执行任意HTML和脚本代码。 0 Linksys WRT160N Linksys ------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: a href=http://www.linksys.com...
Linksys WRT160N - apply.cgi Cross-Site Scripting
Linksys WRT160N - apply.cgi Cross-Site Scripting source: https://www.securityfocus.com/bid/32496/info Linksys WRT160N is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. Attackers may exploit this issue by enticing victims into...
Linksys WRT160N - 'apply.cgi' Cross-Site Scripting
source: https://www.securityfocus.com/bid/32496/info Linksys WRT160N is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. Attackers may exploit this issue by enticing victims into opening a malicious URI. An attacker may leverage...