13 matches found
Elber Signum DVB-S/S2 IRD For Radio Networks 1.999 Insecure Direct Object Reference
Elber Signum DVB-S/S2 IRD For Radio Networks 1.999 Device Config Vendor: Elber S.r.l. Product web page: https://www.elber.it Affected version: 1.999 Revision 1243 1.317 Revision 602 1.220 Revision 1250 1.220 Revision 12481249 1.220 Revision 597 1.217 Revision 1242 1.214 Revision 1023 1.193 Revisi...
SOYAL 701 Client 9.0.1 - Insecure Permissions
Exploit Title: SOYAL 701 Client 9.0.1 - Insecure Permissions Date: 25.01.2021 Exploit Author: LiquidWorm Vendor Homepage: https://www.soyal.com.tw https://www.soyal.com Vendor: SOYAL Technology Co., Ltd Product web page: https://www.soyal.com.tw | https://www.soyal.com Affected version: 9.0.1...
Eibiz i-Media Server Digital Signage 3.8.0 - Configuration Disclosure
Exploit Title: Eibiz i-Media Server Digital Signage 3.8.0 - Configuration Disclosure Date: 2020-08-21 Exploit Author: LiquidWorm Vendor Homepage: http://www.eibiz.co.th Version: =3.8.0 CVE: N/A Eibiz i-Media Server Digital Signage 3.8.0 Configuration Disclosure Vendor: EIBIZ Co.,Ltd. Product web...
FLIR AX8 Thermal Camera 1.32.16 - Arbitrary File Disclosure
Exploit Title: FLIR AX8 Thermal Camera 1.32.16 - Arbitrary File Disclosure Auhor: Gjoko 'LiquidWorm' Krstic Date: 2018-10-14 Vendor: FLIR Systems, Inc. Product web page: https://www.flir.com Affected version: Firmware: 1.32.16, 1.17.13 OS: necov1.8-0-g7ffe5b3 Hardware: Flir Systems Neco Board...
FLIR Thermal Traffic Cameras 1.01-0bb5b27 - RTSP Stream Disclosure
FLIR Thermal Traffic Cameras 1.01-0bb5b27 - RTSP Stream Disclosure Exploit Title: FLIR Thermal Traffic Cameras 1.01-0bb5b27 - RTSP Stream Disclosure Author: Gjoko 'LiquidWorm' Krstic Date: 2018-10-06 Vendor: https://www.flir.com Link: https://www.flir.com/security/best-practices-for-cybersecurity...
Easy!Appointments 1.2.1 Cross Site Scripting
Easy!Appointments v1.2.1 Multiple Stored XSS Vulnerabilities Vendor: Alex Tselegidis Product web page: http://www.easyappointments.org Affected version: 1.2.1 Summary: Easy!Appointments is a highly customizable web application that allows your customers to book appointments with you via the web...
Telesquare SKT LTE Router SDT-CS3B1 CSRF / Command Execution
Telesquare SKT LTE Router SDT-CS3B1 CSRF System Command Execution Vendor: Telesquare Co., Ltd. Product web page: http://www.telesquare.co.kr Affected version: FwVer: SDT-CS3B1, sw version 1.2.0 LteVer: ML300S5XEA41090 1 0.1.0 Modem model: PM-L300S Summary: We introduce SDT-CS3B1 LTE router which ...
SimpleRisk 20170416-001 Cross Site Scripting
history.pushState'', '', '/' alert1" input type="submit" value="XSS 1"...
OpenVPN Private Tunnel Privilege Escalation
OpenVPN Private Tunnel Core Service Unquoted Service Path Elevation Of Privilege Vendor: OpenVPN Technologies, Inc Product web page: http://www.openvpn.net Affected version: 2.1.28.0 PrivateTunnel 2.3.8 Summary: Private Tunnel is a new approach to true Internet security creating a Virtual Private...
TeraCopy 2.3 (default.mo) Language File Integer Overflow Vulnerability
No description provided by source. ?!J:\Perl\bin\perl.exe TeraCopy 2.3 default.mo Language File Integer Overflow Vulnerability Vendor: Code Sector Product web page: http://www.codesector.com Affected version: 2.27 and 2.3 beta 2 Summary: TeraCopy is designed to copy and move files at the maximum...
Huawei Technologies eSpace Meeting Service 1.0.0.23 - Local Privilege Escalation
Huawei Technologies eSpace Meeting Service 1.0.0.23 - Local Privilege Escalation Huawei Technologies eSpace Meeting Service 1.0.0.23 Local Privilege Escalation Vendor: Huawei Technologies Co., Ltd. Product web page: http://www.huawei.com Affected version: 1.0.0.23 V100R001C03SPC201B050 Summary:...
EC Software Help Manual 5.5.1 Build 1296 - ijl15.dll DLL Loading Arbitrary Code Execution
EC Software Help Manual 5.5.1 Build 1296 - ijl15.dll DLL Loading Arbitrary Code Execution // source: https://www.securityfocus.com/bid/47349/info EC Software Help & Manual is prone to an arbitrary-code-execution vulnerability. An attacker can exploit this issue by enticing a legitimate user to us...
Microsoft Source Code Analyzer for SQL Injection 1.3 - Improper Permissions
Microsoft Source Code Analyzer for SQL Injection 1.3 - Improper Permissions Microsoft Source Code Analyzer for SQL Injection 1.3 Improper Permissions Vendor: Microsoft Corp. Product web page: http://www.microsoft.com Affected version: 1.3.30601.30705 summary: Microsoft Source Code Analyzer for SQ...