redteam-pentesting.de vulnerabilities and exploits

(subscribe to this query)

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database g...

Starface Starface

1 Github repository

Pydio Cells allows users by default to create so-called external users in order to share files with them. By modifying the HTTP request sent when creating such an external user, it is possible to assign the new user arbitrary roles. By assigning all roles to a newly created user,...

Pydio Cells up to and including 4.1.2 allows SSRF. For longer running processes, Pydio Cells allows for the creation of jobs, which are run in the background. The job "remote-download" can be used to cause the backend to send a HTTP GET request to a specified URL and sa...

Pydio Cells up to and including 4.1.2 allows XSS. Pydio Cells implements the download of files using presigned URLs which are generated using the Amazon AWS SDK for JavaScript [1]. The secrets used to sign these URLs are hardcoded and exposed through the JavaScript files of the w...

Open redirect vulnerability in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin prior to 1.1.2 for Woltlab Burning Board 4.0 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the board_url pa...

Tapatalk Tapatalk 1.0.0 Tapatalk Tapatalk 1.1.1 Tapatalk Tapatalk 1.1.0 Tapatalk Tapatalk 1.0.2 Tapatalk Tapatalk 1.0.1

Improper Verification of Cryptographic Signature in AVM FRITZ!Box 6810 LTE after firmware 5.22, FRITZ!Box 6840 LTE after firmware 5.23, and other models with firmware 5.50.

Avm Fritz\\!box 6810 Lte Firmware -Avm Fritz\\!box 6840 Lte Firmware -

AVM FRITZ!OS prior to 6.30 extracts the contents of firmware updates before verifying their cryptographic signature, which allows remote malicious users to create symlinks or overwrite critical files, and consequently execute arbitrary code, via a crafted firmware image.

Avm Fritz\\! Os

Session tokens in RWS WorldServer 11.7.3 and previous versions have a low entropy and can be enumerated, leading to unauthorized access to user sessions.

Rws Worldserver

IBM Tivoli Endpoint Manager Mobile Device Management (MDM) prior to 9.0.60100 uses the same secret HMAC token across different customers' installations, which allows remote malicious users to execute arbitrary code via crafted marshalled Ruby objects in cookies to (1) Enroll...

Ibm Tivoli Endpoint Manager Mobile Device Management

Auerswald COMfortel 1400 IP and 2600 IP prior to 2.8G devices allow Authentication Bypass via the /about/../ substring.

Auerswald Comfortel 3600 Ip Firmware Auerswald Comfortel 2600 Ip Firmware Auerswald Comfortel 1400 Ip Firmware

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook