patryk bogdan vulnerabilities and exploits

(subscribe to this query)

On certain Brother devices, authorization is mishandled by including a valid AuthCookie cookie in the HTTP response to a failed login attempt. Affected models are: MFC-J6973CDW MFC-J4420DW MFC-8710DW MFC-J4620DW MFC-L8850CDW MFC-J3720 MFC-J6520DW MFC-L2740DW MFC-J5910DW MFC-J6920...

Brother Mfc Firmware -Brother Dcp Firmware -Brother Ads Firmware -Brother Hl Firmware -

1 EDB exploit1 Github repository

Cisco EPC3928 devices with EDVA 5.5.10, 5.5.11, and 5.7.1 allow remote malicious users to bypass an intended authentication requirement and execute unspecified administrative functions via a crafted HTTP request, aka Bug ID CSCux24941.

Cisco Epc3928 Docsis 3.0 8x4 Wireless Residential Gateway With Embedded Digital Voice Adapter 5.5.10 Cisco Epc3928 Docsis 3.0 8x4 Wireless Residential Gateway With Embedded Digital Voice Adapter 5.5.11 Cisco Epc3928 Docsis 3.0 8x4 Wireless Residential Gateway With Embedded Digital Voice Adapter 5.7.1

1 EDB exploit

Cross-site scripting (XSS) vulnerability in the management interface on Cisco EPC3928 devices with EDVA 5.5.10, 5.5.11, and 5.7.1 allows remote malicious users to inject arbitrary web script or HTML via an unspecified value, aka Bug ID CSCux24935.

Cisco Epc3928 Docsis 3.0 8x4 Wireless Residential Gateway With Embedded Digital Voice Adapter 5.5.10 Cisco Epc3928 Docsis 3.0 8x4 Wireless Residential Gateway With Embedded Digital Voice Adapter 5.5.11 Cisco Epc3928 Docsis 3.0 8x4 Wireless Residential Gateway With Embedded Digital Voice Adapter 5.7.1

1 EDB exploit

goform/WClientMACList on Cisco EPC3928 devices allows remote malicious users to cause a denial of service (device crash) via a long h_sortWireless parameter, related to a "Gateway Client List Denial of Service" issue, aka Bug ID CSCux24948.

Cisco Epc3928 Firmware -

1 EDB exploit

goform/Docsis_system on Cisco EPC3928 devices allows remote malicious users to cause a denial of service (device crash) via a long LanguageSelect parameter, related to a "Gateway HTTP Corruption Denial of Service" issue, aka Bug ID CSCuy28100.

Cisco Epc3928 Firmware -

1 EDB exploit

Cisco EPC3928 devices allow remote malicious users to obtain sensitive configuration and credential information by making requests during the early part of the boot process, related to a "Boot Information Disclosure" issue, aka Bug ID CSCux17178.

Cisco Epc3928 Firmware -

1 EDB exploit

Directory traversal vulnerability in the web interface on the D-Link DWR-116 device with firmware before V1.05b09 allows remote malicious users to read arbitrary files via a .. (dot dot) in a "GET /uir/" request.

Dlink Dwr-116 Firmware V1.01\\(eu\\)Dlink Dwr-116 Firmware V1.00\\(cp\\)b10 Dlink Dwr-116 Firmware V1.05\\(au\\)

1 EDB exploit1 Article

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 up to and including 5.4.4 and 5.6.0 allows malicious users to execute unauthorized code or commands via the filter input in "Applications" under FortiView.

Fortinet Fortios 5.4.4 Fortinet Fortios 5.6.0 Fortinet Fortios 5.4.3 Fortinet Fortios 5.4.2 Fortinet Fortios 5.4.1 Fortinet Fortios 5.4.0

1 EDB exploit

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and previous versions allows malicious users to Execute unauthorized code or commands via the action input during the activation of a FortiToken.

Fortinet Fortios

1 EDB exploit

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and previous versions allows malicious users to execute unauthorized code or commands via the Replacement Message HTML for SSL-VPN.

Fortinet Fortios

1 EDB exploit

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook