๐จ CVE-2023-50128
The remote keyless system of the Hozard alarm system (alarmsystemen) v1.0 sends an identical radio frequency signal for each request, which results in an attacker being able to conduct replay attacks to bring the alarm system to a disarmed state.
๐@cveNotify
The remote keyless system of the Hozard alarm system (alarmsystemen) v1.0 sends an identical radio frequency signal for each request, which results in an attacker being able to conduct replay attacks to bring the alarm system to a disarmed state.
๐@cveNotify
English
Security concerns in popular smart home devices
Smart home devices are becoming more popular, Bureau Veritas Cybersecurity has tested many of these devices. This article describes several of the vulnerabilities our experts found in the two popular smart home devices.
๐จ CVE-2023-46474
File Upload vulnerability PMB v.7.4.8 allows a remote attacker to execute arbitrary code and escalate privileges via a crafted PHP file uploaded to the start_import.php file.
๐@cveNotify
File Upload vulnerability PMB v.7.4.8 allows a remote attacker to execute arbitrary code and escalate privileges via a crafted PHP file uploaded to the start_import.php file.
๐@cveNotify
GitHub
GitHub - Xn2/CVE-2023-46474: Technical details for CVE-2023-46474
Technical details for CVE-2023-46474. Contribute to Xn2/CVE-2023-46474 development by creating an account on GitHub.
๐จ CVE-2023-51810
SQL injection vulnerability in StackIdeas EasyDiscuss v.5.0.5 and fixed in v.5.0.10 allows a remote attacker to obtain sensitive information via a crafted request to the search parameter in the Users module.
๐@cveNotify
SQL injection vulnerability in StackIdeas EasyDiscuss v.5.0.5 and fixed in v.5.0.10 allows a remote attacker to obtain sensitive information via a crafted request to the search parameter in the Users module.
๐@cveNotify
GitHub
GitHub - Pastea/CVE-2023-51810
Contribute to Pastea/CVE-2023-51810 development by creating an account on GitHub.
๐จ CVE-2023-46952
Cross Site Scripting vulnerability in ABO.CMS v.5.9.3 allows an attacker to execute arbitrary code via a crafted payload to the Referer header.
๐@cveNotify
Cross Site Scripting vulnerability in ABO.CMS v.5.9.3 allows an attacker to execute arbitrary code via a crafted payload to the Referer header.
๐@cveNotify
GitHub
GitHub - SadFox/ABO.CMS-Blind-XSS: ABO.CMS Blind XSS
ABO.CMS Blind XSS. Contribute to SadFox/ABO.CMS-Blind-XSS development by creating an account on GitHub.
๐จ CVE-2023-51946
Multiple reflected cross-site scripting (XSS) vulnerabilities in nasSvr.php in actidata actiNAS-SL-2U-8 3.2.03-SP1 allow remote attackers to inject arbitrary web script or HTML.
๐@cveNotify
Multiple reflected cross-site scripting (XSS) vulnerabilities in nasSvr.php in actidata actiNAS-SL-2U-8 3.2.03-SP1 allow remote attackers to inject arbitrary web script or HTML.
๐@cveNotify
GitHub
CVEs/CVE-2023-51946/README.md at main ยท saw-your-packet/CVEs
Repo with found CVEs. Contribute to saw-your-packet/CVEs development by creating an account on GitHub.
๐จ CVE-2023-51947
Improper access control on nasSvr.php in actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 allows remote attackers to read and modify different types of data without authentication.
๐@cveNotify
Improper access control on nasSvr.php in actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 allows remote attackers to read and modify different types of data without authentication.
๐@cveNotify
GitHub
CVEs/CVE-2023-51947/README.md at main ยท saw-your-packet/CVEs
Repo with found CVEs. Contribute to saw-your-packet/CVEs development by creating an account on GitHub.
๐จ CVE-2023-51892
An issue in weaver e-cology v.10.0.2310.01 allows a remote attacker to execute arbitrary code via a crafted script to the FrameworkShellController component.
๐@cveNotify
An issue in weaver e-cology v.10.0.2310.01 allows a remote attacker to execute arbitrary code via a crafted script to the FrameworkShellController component.
๐@cveNotify
GitHub
cxcxcxcxcxcxcxc/cxcxcxcxcxc/about/51892.txt at main ยท cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc
Contribute to cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc development by creating an account on GitHub.
๐จ CVE-2023-51926
YonBIP v3_23.05 was discovered to contain an arbitrary file read vulnerability via the nc.bs.framework.comn.serv.CommonServletDispatcher component.
๐@cveNotify
YonBIP v3_23.05 was discovered to contain an arbitrary file read vulnerability via the nc.bs.framework.comn.serv.CommonServletDispatcher component.
๐@cveNotify
GitHub
cxcxcxcxcxcxcxc/cxcxcxcxcxc/about/51926.txt at main ยท cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc
Contribute to cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc development by creating an account on GitHub.
๐จ CVE-2023-51927
YonBIP v3_23.05 was discovered to contain a SQL injection vulnerability via the com.yonyou.hrcloud.attend.web.AttendScriptController.runScript() method.
๐@cveNotify
YonBIP v3_23.05 was discovered to contain a SQL injection vulnerability via the com.yonyou.hrcloud.attend.web.AttendScriptController.runScript() method.
๐@cveNotify
GitHub
cxcxcxcxcxcxcxc/cxcxcxcxcxc/about/51927.txt at main ยท cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc
Contribute to cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc development by creating an account on GitHub.
๐จ CVE-2023-51928
An arbitrary file upload vulnerability in the nccloud.web.arcp.taskmonitor.action.ArcpUploadAction.doAction() method of YonBIP v3_23.05 allows attackers to execute arbitrary code via uploading a crafted file.
๐@cveNotify
An arbitrary file upload vulnerability in the nccloud.web.arcp.taskmonitor.action.ArcpUploadAction.doAction() method of YonBIP v3_23.05 allows attackers to execute arbitrary code via uploading a crafted file.
๐@cveNotify
GitHub
cxcxcxcxcxcxcxc/cxcxcxcxcxc/about/51928.txt at main ยท cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc
Contribute to cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc development by creating an account on GitHub.
๐จ CVE-2023-51924
An arbitrary file upload vulnerability in the uap.framework.rc.itf.IResourceManager interface of YonBIP v3_23.05 allows attackers to execute arbitrary code via uploading a crafted file.
๐@cveNotify
An arbitrary file upload vulnerability in the uap.framework.rc.itf.IResourceManager interface of YonBIP v3_23.05 allows attackers to execute arbitrary code via uploading a crafted file.
๐@cveNotify
GitHub
cxcxcxcxcxcxcxc/cxcxcxcxcxc/about/51924.txt at main ยท cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc
Contribute to cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc development by creating an account on GitHub.
๐จ CVE-2023-51925
An arbitrary file upload vulnerability in the nccloud.web.arcp.taskmonitor.action.ArcpUploadAction.doAction() method of YonBIP v3_23.05 allows attackers to execute arbitrary code via uploading a crafted file.
๐@cveNotify
An arbitrary file upload vulnerability in the nccloud.web.arcp.taskmonitor.action.ArcpUploadAction.doAction() method of YonBIP v3_23.05 allows attackers to execute arbitrary code via uploading a crafted file.
๐@cveNotify
GitHub
cxcxcxcxcxcxcxc/cxcxcxcxcxc/about/51925.txt at main ยท cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc
Contribute to cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc development by creating an account on GitHub.
๐จ CVE-2023-24135
Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to contain a command injection vulnerability in the function formWriteFacMac. This vulnerability allows attackers to execute arbitrary commands via manipulation of the mac parameter.
๐@cveNotify
Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to contain a command injection vulnerability in the function formWriteFacMac. This vulnerability allows attackers to execute arbitrary commands via manipulation of the mac parameter.
๐@cveNotify
๐จ CVE-2023-36177
An issue was discovered in badaix Snapcast version 0.27.0, allows remote attackers to execute arbitrary code and gain sensitive information via crafted request in JSON-RPC-API.
๐@cveNotify
An issue was discovered in badaix Snapcast version 0.27.0, allows remote attackers to execute arbitrary code and gain sensitive information via crafted request in JSON-RPC-API.
๐@cveNotify
๐จ CVE-2024-22922
An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows a remtoe attacker to escalate privileges via a crafted script to the login page in the POST/index.php
๐@cveNotify
An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows a remtoe attacker to escalate privileges via a crafted script to the login page in the POST/index.php
๐@cveNotify
GitHub
CVE-2024-22922/CVE-2024-22922.md at main ยท pwnpwnpur1n/CVE-2024-22922
A Broken Authentication Vulnerability found in Projectworlds' Visitor Management System - pwnpwnpur1n/CVE-2024-22922
๐จ CVE-2024-23055
An issue in Plone Docker Official Image 5.2.13 (5221) open-source software allows for remote code execution via improper validation of input by the HOST headers.
๐@cveNotify
An issue in Plone Docker Official Image 5.2.13 (5221) open-source software allows for remote code execution via improper validation of input by the HOST headers.
๐@cveNotify
GitHub
CVEs/CVE-2024-23055 at main ยท c0d3x27/CVEs
This a collection of proof-of-concept exploits for various Common Vulnerabilities and Exposures (CVEs) that I have personally discovered. Whether you are passionate about cybersecurity, dedicated t...
๐จ CVE-2023-46344
A vulnerability in Solar-Log Base 15 Firmware 6.0.1 Build 161, and possibly other Solar-Log Base products, allows an attacker to escalate their privileges by exploiting a stored cross-site scripting (XSS) vulnerability in the switch group function under /#ilang=DE&b=c_smartenergy_swgroups in the web portal. The vulnerability can be exploited to gain the rights of an installer or PM, which can then be used to gain administrative access to the web portal and execute further attacks. NOTE: The vendor states that this vulnerability has been fixed with 3.0.0-60 11.10.2013 for SL 200, 500, 1000 / not existing for SL 250, 300, 1200, 2000, SL 50 Gateway, SL Base.
๐@cveNotify
A vulnerability in Solar-Log Base 15 Firmware 6.0.1 Build 161, and possibly other Solar-Log Base products, allows an attacker to escalate their privileges by exploiting a stored cross-site scripting (XSS) vulnerability in the switch group function under /#ilang=DE&b=c_smartenergy_swgroups in the web portal. The vulnerability can be exploited to gain the rights of an installer or PM, which can then be used to gain administrative access to the web portal and execute further attacks. NOTE: The vendor states that this vulnerability has been fixed with 3.0.0-60 11.10.2013 for SL 200, 500, 1000 / not existing for SL 250, 300, 1200, 2000, SL 50 Gateway, SL Base.
๐@cveNotify
GitHub
CVE-2023-46344/Solar-Log XSS at main ยท vinnie1717/CVE-2023-46344
Contribute to vinnie1717/CVE-2023-46344 development by creating an account on GitHub.
๐จ CVE-2024-22899
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the syncNtpTime function.
๐@cveNotify
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the syncNtpTime function.
๐@cveNotify
blog.leakix.net
Vinchin Backup & Recovery: CVE-2024-22899 to CVE-2024-22903
Advisory Overview: CVE-2024-22899 to CVE-2024-22903 in Detail
๐จ CVE-2024-22900
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the setNetworkCardInfo function.
๐@cveNotify
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the setNetworkCardInfo function.
๐@cveNotify
blog.leakix.net
Vinchin Backup & Recovery: CVE-2024-22899 to CVE-2024-22903
Advisory Overview: CVE-2024-22899 to CVE-2024-22903 in Detail
๐จ CVE-2024-22901
Vinchin Backup & Recovery v7.2 was discovered to use default MYSQL credentials.
๐@cveNotify
Vinchin Backup & Recovery v7.2 was discovered to use default MYSQL credentials.
๐@cveNotify
blog.leakix.net
Vinchin Backup & Recovery: CVE-2024-22899 to CVE-2024-22903
Advisory Overview: CVE-2024-22899 to CVE-2024-22903 in Detail
๐จ CVE-2024-22902
Vinchin Backup & Recovery v7.2 was discovered to be configured with default root credentials.
๐@cveNotify
Vinchin Backup & Recovery v7.2 was discovered to be configured with default root credentials.
๐@cveNotify
blog.leakix.net
Vinchin Backup & Recovery: CVE-2024-22899 to CVE-2024-22903
Advisory Overview: CVE-2024-22899 to CVE-2024-22903 in Detail