Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bulbsecurity smartphone pentest framework 0.1.3 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2012-5878
Bulb Security Smartphone Pentest Framework (SPF) 0.1.2 up to and including 0.1.4 allows remote malicious users to execute arbitrary commands via shell metacharacters in the hostingPath parameter to (1) SEAttack.pl or (2) CSAttack.pl in frameworkgui/ or the (3) appURLPath paramete...
Bulbsecurity Smartphone Pentest Framework
1 EDB exploit
8.8
CVSSv3
CVE-2012-5693
Bulb Security Smartphone Pentest Framework (SPF) prior to 0.1.3 allows remote malicious users to execute arbitrary commands via shell metacharacters in the ipAddressTB parameter to (1) remoteAttack.pl or (2) guessPassword.pl in frameworkgui/; the filename parameter to (3) CSAttac...
Bulbsecurity Smartphone Pentest Framework
NA
CVE-2012-5694
Multiple SQL injection vulnerabilities in Bulb Security Smartphone Pentest Framework (SPF) prior to 0.1.3 allow remote malicious users to execute arbitrary SQL commands via the (1) agentPhNo, (2) controlPhNo, (3) agentURLPath, (4) agentControlKey, or (5) platformDD1 parameter to ...
Bulbsecurity Smartphone Pentest Framework 0.1.2
NA
CVE-2012-5695
Multiple cross-site request forgery (CSRF) vulnerabilities in Bulb Security Smartphone Pentest Framework (SPF) 0.1.2 up to and including 0.1.4 allow remote malicious users to hijack the authentication of administrators for requests that conduct (1) shell metacharacter or (2) SQL ...
Bulbsecurity Smartphone Pentest Framework 0.1.4
Bulbsecurity Smartphone Pentest Framework 0.1.2
Bulbsecurity Smartphone Pentest Framework 0.1.3
NA
CVE-2012-5696
Bulb Security Smartphone Pentest Framework (SPF) prior to 0.1.3 does not properly restrict access to frameworkgui/config, which allows remote malicious users to obtain the plaintext database password via a direct request.
Bulbsecurity Smartphone Pentest Framework
NA
CVE-2012-5697
The btinstall installation script in Bulb Security Smartphone Pentest Framework (SPF) prior to 0.1.3 uses weak permissions (777) for all files in the frameworkgui/ directory, which allows local users to obtain sensitive information or inject arbitrary Perl code via direct access ...
Bulbsecurity Smartphone Pentest Framework
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started