what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 9 of 9

Files from Jens Regel

AVEVA InTouch Access Anywhere Secure Gateway 2020 R2 Path Traversal

Posted Nov 11, 2022

Authored by Jens Regel

AVEVA InTouch Access Anywhere Secure Gateway 2020 R2 suffers from a path traversal vulnerability.

tags | exploit, file inclusion

advisories | CVE-2022-23854

SHA-256 | a78de92013681ef6d9eab5f28cda6712397f5a30d67a7a27854785925a87f96a

Download | Favorite | View

InTouch Access Anywhere Secure Gateway 2020 R2 Path Traversal

Posted Sep 9, 2022

Authored by Jens Regel | Site crisec.de

InTouch Access Anywhere Secure Gateway versions 2020 R2 and below suffer from a path traversal vulnerability.

tags | exploit, file inclusion

advisories | CVE-2022-23854

SHA-256 | c9873dff912c339fc99f6c1c0d26c32ecee59d977893de8864d051af5bba5038

Download | Favorite | View

SolarWinds MSP PME Cache Service Insecure File Permissions / Code Execution

Posted May 7, 2020

Authored by Jens Regel

SolarWinds MSP PME Cache Service versions prior to 1.1.15 suffer from insecure file permission and code execution vulnerabilities.

tags | exploit, vulnerability, code execution

advisories | CVE-2020-12608

SHA-256 | 48f33d0d336e80e69deaf12e06fcac8f18ff3c6cfc521618d9a105e600701cb3

Download | Favorite | View

CommSy 8.6.5 SQL Injection

Posted May 15, 2019

Authored by Jens Regel

CommSy version 8.6.5 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

advisories | CVE-2019-11880

SHA-256 | caaf4195ef8ed74119a38806de16535c03f70cef3bec2f81098911332c80d961

Download | Favorite | View

ELO (Elektronischer Leitz-Ordner) 9 / 10 SQL Injection

Posted Jul 10, 2018

Authored by Jens Regel

ELO (Elektronischer Leitz-Ordner) versions 9 and 10 suffer from a remote time-based blind SQL injection vulnerability.

tags | exploit, remote, sql injection

advisories | CVE-2018-10197

SHA-256 | 2603a781501209d37bfe05201ca1225b689d29445e46486677e64b0e6b94f1cb

Download | Favorite | View

3CX Phone System 15.5.3554.1 Directory Traversal

Posted Oct 16, 2017

Authored by Jens Regel

3CX Phone System version 15.5.3554.1 suffers from an authentication directory traversal vulnerability.

tags | exploit, file inclusion

advisories | CVE-2017-15359

SHA-256 | cb8441731c281734813f4bef268b3e660c081b462aef261d1518f5370b639c0c

Download | Favorite | View

Miele Professional PG 8528 Directory Traversal

Posted Mar 24, 2017

Authored by Jens Regel

The Miele Professional PG 8528 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion

advisories | CVE-2017-7240

SHA-256 | c94b17923d930d05dd075dd8fc7387a99ddd50e808d1eec813b5c76589b89de4

Download | Favorite | View

IBM Advanced Management Module Cross Site Scripting

Posted Aug 12, 2013

Authored by Jens Regel

The IBM Advanced Management module suffers from a cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2013-4007

SHA-256 | 5ab611a253a002c9df7f06dd2376c7652772ce0ea5af2e27482bcd1b097504f7

Download | Favorite | View

Netgear WPN824v3 Unauthorized Config Download

Posted Jun 3, 2013

Authored by Jens Regel

Netgear WPN824v3 allows for a remote party to download the configuration file unauthenticated.

tags | exploit, remote

SHA-256 | 06e9758cc624e50c9ef6019e428d78a591a6733fb0bb99f6c0f03c6e3a08dc24

Download | Favorite | View