Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-0396

Malware in sbrugna...

7.8CVSS6.4AI score0.06162EPSS
Exploits0References2
NVD
NVD
added 2014/04/15 10:55 a.m.19 views

CVE-2014-0359

Xangati XSR before 11 and XNR before 7 allows remote attackers to execute arbitrary commands via shell metacharacters in a guiinputtest.pl params parameter to servlet/Installer...

9CVSS7.6AI score0.04723EPSS
Exploits0References1
NVD
NVD
added 2014/04/15 10:55 a.m.17 views

CVE-2014-0358

Multiple directory traversal vulnerabilities in Xangati XSR before 11 and XNR before 7 allow remote attackers to read arbitrary files via a .. dot dot in 1 the file parameter in a getUpgradeStatus action to servlet/MGConfigData, 2 the download parameter in a download action to servlet/MGConfigDat...

7.8CVSS6.9AI score0.06162EPSS
Exploits0References1
Prion
Prion
added 2014/04/15 10:55 a.m.20 views

Directory traversal

Multiple directory traversal vulnerabilities in Xangati XSR before 11 and XNR before 7 allow remote attackers to read arbitrary files via a .. dot dot in 1 the file parameter in a getUpgradeStatus action to servlet/MGConfigData, 2 the download parameter in a download action to servlet/MGConfigDat...

7.8CVSS7.4AI score0.06162EPSS
Exploits0References1
Prion
Prion
added 2014/04/15 10:55 a.m.18 views

Design/Logic Flaw

Xangati XSR before 11 and XNR before 7 allows remote attackers to execute arbitrary commands via shell metacharacters in a guiinputtest.pl params parameter to servlet/Installer...

9CVSS8.2AI score0.04723EPSS
Exploits0References1
Cvelist
Cvelist
added 2014/04/15 10:0 a.m.27 views

CVE-2014-0358

Multiple directory traversal vulnerabilities in Xangati XSR before 11 and XNR before 7 allow remote attackers to read arbitrary files via a .. dot dot in 1 the file parameter in a getUpgradeStatus action to servlet/MGConfigData, 2 the download parameter in a download action to servlet/MGConfigDat...

6.9AI score0.06162EPSS
Exploits0References1
CVE
CVE
added 2014/04/15 10:0 a.m.45 views

CVE-2014-0358

CVE-2014-0358 affects Xangati XSR before 11 and XNR before 7, with multiple directory traversal vulnerabilities allowing remote attackers to read arbitrary files via ../ in parameters for actions on MGConfigData, Installer, or related endpoints. The root cause is improper input validation of file...

7.8CVSS7AI score0.06162EPSS
Exploits0References1Affected Software2
exploitpack
exploitpack
added 2014/04/14 12:0 a.m.10 views

Xangati XSR XNR - gui_input_test.pl Remote Command Execution

Xangati XSR XNR - guiinputtest.pl Remote Command Execution source: https://www.securityfocus.com/bid/66819/info Xangati XSR And XNR are prone to a remote command-execution vulnerability because the application fails to sufficiently sanitize user-supplied input data. An attacker may leverage this...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2014/04/14 12:0 a.m.23 views

Xangati XSR / XNR - 'gui_input_test.pl' Remote Command Execution

source: https://www.securityfocus.com/bid/66819/info Xangati XSR And XNR are prone to a remote command-execution vulnerability because the application fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary commands in the context of the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2014/04/14 12:0 a.m.24 views

Xangati - '/servlet/Installer?file' Directory Traversal

source: https://www.securityfocus.com/bid/66817/info Xangati XSR And XNR are prone to a multiple directory-traversal vulnerabilities. A remote attacker could exploit these vulnerabilities using directory-traversal characters '../' to access or read arbitrary files that contain sensitive...

7.4AI score
Exploits0
Rows per page
Query Builder