π¨ CVE-2024-42747
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command injection vulnerability in setWanIeCfg. Authenticated Attackers can send malicious packet to execute arbitrary commands.
π@cveNotify
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command injection vulnerability in setWanIeCfg. Authenticated Attackers can send malicious packet to execute arbitrary commands.
π@cveNotify
GitHub
reports/totolink/x5000r/setWanIeCfg/setWanIeCfg.md at main Β· HouseFuzz/reports
CVE reports. Contribute to HouseFuzz/reports development by creating an account on GitHub.
π¨ CVE-2024-42748
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command injection vulnerability in setWiFiWpsCfg. Authenticated Attackers can send malicious packet to execute arbitrary commands.
π@cveNotify
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command injection vulnerability in setWiFiWpsCfg. Authenticated Attackers can send malicious packet to execute arbitrary commands.
π@cveNotify
GitHub
reports/totolink/x5000r/setWiFiWpsCfg/setWiFiWpsCfg.md at main Β· HouseFuzz/reports
CVE reports. Contribute to HouseFuzz/reports development by creating an account on GitHub.
π¨ CVE-2024-38287
The password-reset mechanism in the Forgot Password functionality in R-HUB TurboMeeting through 8.x allows unauthenticated remote attackers to force the application into resetting the administrator's password to a random insecure 8-digit value.
π@cveNotify
The password-reset mechanism in the Forgot Password functionality in R-HUB TurboMeeting through 8.x allows unauthenticated remote attackers to force the application into resetting the administrator's password to a random insecure 8-digit value.
π@cveNotify
GitHub
TurboMeeting: Insecure Password Reset Mechanism
### Summary
It was noted that the password reset functionality of the "RHUB TurboMeeting" application resets passwords to a random 8-digit value instead of allowing users to set a new pa...
It was noted that the password reset functionality of the "RHUB TurboMeeting" application resets passwords to a random 8-digit value instead of allowing users to set a new pa...
π¨ CVE-2024-38288
A command-injection issue in the Certificate Signing Request (CSR) functionality in R-HUB TurboMeeting through 8.x allows authenticated attackers with administrator privileges to execute arbitrary commands on the underlying server as root.
π@cveNotify
A command-injection issue in the Certificate Signing Request (CSR) functionality in R-HUB TurboMeeting through 8.x allows authenticated attackers with administrator privileges to execute arbitrary commands on the underlying server as root.
π@cveNotify
GitHub
TurboMeeting: Post-Authentication Command Injection
### Summary
The Certificate Signing Request (CSR) feature in the admin portal of the application is vulnerable to command injection. This vulnerability could allow authenticated admin users to ex...
The Certificate Signing Request (CSR) feature in the admin portal of the application is vulnerable to command injection. This vulnerability could allow authenticated admin users to ex...
π¨ CVE-2024-38289
A boolean-based SQL injection issue in the Virtual Meeting Password (VMP) endpoint in R-HUB TurboMeeting through 8.x allows unauthenticated remote attackers to extract hashed passwords from the database, and authenticate to the application, via crafted SQL input.
π@cveNotify
A boolean-based SQL injection issue in the Virtual Meeting Password (VMP) endpoint in R-HUB TurboMeeting through 8.x allows unauthenticated remote attackers to extract hashed passwords from the database, and authenticate to the application, via crafted SQL input.
π@cveNotify
GitHub
TurboMeeting: Boolean-based SQL Injection
### Summary
A Boolean-based SQL injection vulnerability in the "RHUB TurboMeeting" web application. This vulnerability could allow an attacker to execute arbitrary SQL commands on the da...
A Boolean-based SQL injection vulnerability in the "RHUB TurboMeeting" web application. This vulnerability could allow an attacker to execute arbitrary SQL commands on the da...
π¨ CVE-2024-42520
TOTOLINK A3002R v4.0.0-B20230531.1404 contains a buffer overflow vulnerability in /bin/boa via formParentControl.
π@cveNotify
TOTOLINK A3002R v4.0.0-B20230531.1404 contains a buffer overflow vulnerability in /bin/boa via formParentControl.
π@cveNotify
GitHub
GitHub - c10uds/totolink_A3002R_stackoverflow
Contribute to c10uds/totolink_A3002R_stackoverflow development by creating an account on GitHub.
π¨ CVE-2024-42628
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/edit/3.
π@cveNotify
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/edit/3.
π@cveNotify
GitHub
cms/5/readme.md at main Β· Kirtoc/cms
Contribute to Kirtoc/cms development by creating an account on GitHub.
π¨ CVE-2024-42630
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/plugin/file_manager/create_file.
π@cveNotify
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/plugin/file_manager/create_file.
π@cveNotify
GitHub
cms/10/readme.md at main Β· Kirtoc/cms
Contribute to Kirtoc/cms development by creating an account on GitHub.
π¨ CVE-2024-42631
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/layout/edit/1.
π@cveNotify
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/layout/edit/1.
π@cveNotify
GitHub
cms/7/readme.md at main Β· Kirtoc/cms
Contribute to Kirtoc/cms development by creating an account on GitHub.
π¨ CVE-2024-42632
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/page/add.
π@cveNotify
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/page/add.
π@cveNotify
GitHub
cms/1/readme.md at main Β· Kirtoc/cms
Contribute to Kirtoc/cms development by creating an account on GitHub.
π¨ CVE-2024-42623
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/layout/delete/1
π@cveNotify
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/layout/delete/1
π@cveNotify
GitHub
cms/8/readme.md at main Β· Kirtoc/cms
Contribute to Kirtoc/cms development by creating an account on GitHub.
π¨ CVE-2024-42624
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/page/delete/10.
π@cveNotify
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/page/delete/10.
π@cveNotify
GitHub
cms/3/readme.md at main Β· Kirtoc/cms
Contribute to Kirtoc/cms development by creating an account on GitHub.
π¨ CVE-2024-42626
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/add.
π@cveNotify
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/add.
π@cveNotify
GitHub
cms/4/readme.md at main Β· Kirtoc/cms
Contribute to Kirtoc/cms development by creating an account on GitHub.
π¨ CVE-2024-42627
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/delete/3.
π@cveNotify
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/delete/3.
π@cveNotify
GitHub
cms/6/readme.md at main Β· Kirtoc/cms
Contribute to Kirtoc/cms development by creating an account on GitHub.
π¨ CVE-2024-42543
TOTOLINK A3700R v9.1.2u.5822_B20200513 has a buffer overflow vulnerability in the http_host parameter in the loginauth function.
π@cveNotify
TOTOLINK A3700R v9.1.2u.5822_B20200513 has a buffer overflow vulnerability in the http_host parameter in the loginauth function.
π@cveNotify
π¨ CVE-2024-42545
TOTOLINK A3700R v9.1.2u.5822_B20200513 has a buffer overflow vulnerability in the ssid parameter in setWizardCfg function.
π@cveNotify
TOTOLINK A3700R v9.1.2u.5822_B20200513 has a buffer overflow vulnerability in the ssid parameter in setWizardCfg function.
π@cveNotify
GitHub
IoT-vulnerable/TOTOLINK/A3700R/setWizardCfg.md at main Β· abcdefg-png/IoT-vulnerable
IoT-vulnerable. Contribute to abcdefg-png/IoT-vulnerable development by creating an account on GitHub.
π¨ CVE-2024-38501
An unauthenticated remote attacker may use a HTML injection vulnerability with limited length to inject malicious HTML code and gain low-privileged access on the affected device.
π@cveNotify
An unauthenticated remote attacker may use a HTML injection vulnerability with limited length to inject malicious HTML code and gain low-privileged access on the affected device.
π@cveNotify
Certvde
PEPPERL+FUCHS: Device Master ICDM-RX/* β Vulnerability may allow unauthenticated remote attacker information disclosure and denialβ¦
π¨ CVE-2024-38502
An unauthenticated remote attacker may use stored XSS vulnerability to obtain information from a user or reboot the affected device once.
π@cveNotify
An unauthenticated remote attacker may use stored XSS vulnerability to obtain information from a user or reboot the affected device once.
π@cveNotify
Certvde
PEPPERL+FUCHS: Device Master ICDM-RX/* β Vulnerability may allow unauthenticated remote attacker information disclosure and denialβ¦
π¨ CVE-2024-3913
An unauthenticated remote attacker can use this vulnerability to change the device configuration due to a file writeable for short time after system startup.
π@cveNotify
An unauthenticated remote attacker can use this vulnerability to change the device configuration due to a file writeable for short time after system startup.
π@cveNotify
Certvde
Phoenix Contact: Security Advisory for CHARX-SEC3xxx Charge controllers
π¨ CVE-2024-5849
An unauthenticated remote attacker may use a reflected XSS vulnerability to obtain information from a user or reboot the affected device once.
π@cveNotify
An unauthenticated remote attacker may use a reflected XSS vulnerability to obtain information from a user or reboot the affected device once.
π@cveNotify
Certvde
PEPPERL+FUCHS: Device Master ICDM-RX/* β Vulnerability may allow unauthenticated remote attacker information disclosure and denialβ¦
π¨ CVE-2024-41808
The OpenObserve open-source observability platform provides the ability to filter logs in a dashboard by the values uploaded in a given log. However, all versions of the platform through 0.9.1 do not sanitize user input in the filter selection menu, which may result in complete account takeover. It has been noted that the front-end uses `DOMPurify` or Vue templating to escape cross-site scripting (XSS) extensively, however certain areas of the front end lack this XSS protection. When combining the missing protection with the insecure authentication handling that the front-end uses, a malicious user may be able to take over any victim's account provided they meet the exploitation steps. As of time of publication, no patched version is available.
π@cveNotify
The OpenObserve open-source observability platform provides the ability to filter logs in a dashboard by the values uploaded in a given log. However, all versions of the platform through 0.9.1 do not sanitize user input in the filter selection menu, which may result in complete account takeover. It has been noted that the front-end uses `DOMPurify` or Vue templating to escape cross-site scripting (XSS) extensively, however certain areas of the front end lack this XSS protection. When combining the missing protection with the insecure authentication handling that the front-end uses, a malicious user may be able to take over any victim's account provided they meet the exploitation steps. As of time of publication, no patched version is available.
π@cveNotify
GitHub
Stored XSS may lead to complete account takeover
## Details
_Discussions about the issue being disclosed, the underlying behaviour at fault, etc_
The OpenObserve platform provides the ability to filter logs in a dashboard by the values upload...
_Discussions about the issue being disclosed, the underlying behaviour at fault, etc_
The OpenObserve platform provides the ability to filter logs in a dashboard by the values upload...