Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
daniele linguaglossa vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2018-5997
An issue exists in the HTTP Server in RAVPower Filehub 2.000.056. Due to an unrestricted upload feature and a path traversal vulnerability, it is possible to upload a file on a filesystem with root privileges: this will lead to remote code execution as root.
Ravpower Filehub Firmware 2.000.056
1 EDB exploit
10
CVSSv2
CVE-2018-5723
MASTER IPCAMERA01 3.3.4.2103 devices have a hardcoded password of cat1029 for the root account.
Barni Master Ip Camera01 Firmware 3.3.4.2103
1 EDB exploit
10
CVSSv2
CVE-2018-5724
MASTER IPCAMERA01 3.3.4.2103 devices allow Unauthenticated Configuration Download and Upload, as demonstrated by restore.cgi.
Barni Master Ip Camera01 Firmware 3.3.4.2103
1 EDB exploit
10
CVSSv2
CVE-2014-6287
The findMacroMarker function in parserLib.pas in Rejetto HTTP File Server (aks HFS or HttpFileServer) 2.3x prior to 2.3c allows remote malicious users to execute arbitrary programs via a %00 sequence in a search action.
Rejetto Http File Server
3 EDB exploits
14 Github repositories
9
CVSSv2
CVE-2017-12763
An unspecified server utility in NoMachine prior to 5.3.10 on Mac OS X and Linux allows authenticated users to gain privileges by gaining access to local files.
Nomachine Nomachine
1 EDB exploit
7.5
CVSSv2
CVE-2014-7226
The file comment feature in Rejetto HTTP File Server (hfs) 2.3c and previous versions allows remote malicious users to execute arbitrary code by uploading a file with certain invalid UTF-8 byte sequences that are interpreted as executable macro symbols.
Rejetto Http File Server
1 EDB exploit
7.2
CVSSv2
CVE-2015-4027
The AcuWVSSchedulerv10 service in Acunetix Web Vulnerability Scanner (WVS) prior to 10 build 20151125 allows local users to gain privileges via a command parameter in the reporttemplate property in a params JSON object to api/addScan.
Acunetix Web Vulnerability Scanner
1 EDB exploit
5
CVSSv2
CVE-2018-5319
RAVPower FileHub 2.000.056 allows remote users to steal sensitive information via a crafted HTTP request.
Ravpower Filehub Firmware 2.000.056
1 EDB exploit
5
CVSSv2
CVE-2018-5725
MASTER IPCAMERA01 3.3.4.2103 devices allow Unauthenticated Configuration Change, as demonstrated by the port number of the web server.
Barni Master Ip Camera01 Firmware 3.3.4.2103
1 EDB exploit
5
CVSSv2
CVE-2018-5726
MASTER IPCAMERA01 3.3.4.2103 devices allow remote malicious users to obtain sensitive information via a crafted HTTP request, as demonstrated by the username, password, and configuration settings.
Barni Master Ip Camera01 Firmware 3.3.4.2103
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »