ADM versions 3.1.2RHG1 and below suffer from a remote code execution vulnerability.
9a46e6052ab21077d8fb2a00c396c5a222221fa0ed30b081f7a21a733bacdd33ASUSTOR NAS ADM version 3.1.0 suffers from code execution and remote SQL injection vulnerabilities.
1644681fa9ff008830ac7ddad2b94c3263d391b10d2e6962b1b9eaf1341a36beWordPress Social-Stream versions 1.6.0 and below suffer from a Twitter API OAuth secret disclosure vulnerability.
d9397402a5e15bf1dfe27b9c6cfe4a24c02c4ffc37e440343f5c6850e3501b41Easy Hosting Control Panel versions 0.29 through 0.37.9 suffer from information disclosure, authentication bypass, clear text password storage, and remote file upload vulnerabilities.
92d027b491a0587f69c8ac9a28d8b652868ac013c1ddd4a5765f2af4ee55d67eD-Link DIR-652, DIR-835, DIR-855L, DGL-500, and DHP-1565 suffer from clear text storage of passwords, cross site scripting, and sensitive information disclosure vulnerabilities.
a7668e84297d67c97f777a5d017f21ef288453a895bebdf304e432fe59637710D-Link DAP-1320 wireless range extenders suffer from cross site scripting and directory traversal vulnerabilities.
77b810526b2243160b03793dfdb3c3585e5ec7325808307c5d7dc5f0e4ec20bdLinksys products EA2700, EA3500, E4200, and EA4500 suffer from having an unauthenticated interface on port 8083 periodically.
c93dc6b97572e7b9d7273d159d461be3bb7465f6b1ea286140fabecda91500c0Five ASUS RT series routers suffer from a vendor vulnerability that default FTP service to anonymous access with full read/write permissions.
df94c3881f58c3d90e3c87a3f4f3cb75a7ea84051aaa9d0bf12a4e0118b66733ASUS routers are vulnerable to authetnnication bypass and sensitive file disclosure vulnerabilities.
1821f52b283817610673596a7d3b56a3508d4306d82118292130a704086d8da1Five models of the Zoom Telephonics ADSL modem/router line suffers from authentication bypass, plain-text credential storage, improper handling, and traversal vulnerabilities.
44c6fde6671c4ea90e34564c3f3a20d93c0520abfb5edcbfb3a4dc36ffa44802On various Linksys devices, an unspecified bug can cause an unsafe/undocumented TCP port to open allowing for unauthenticated remote access to the device.
498c65c860fe5d919123b02b7dda83e1dd02868d0b1adb1db402354c60007bd1Western Digital My Net Series wireless routers suffer from a clear text password disclosure. The N600, N750, N900, and N900C are affected. This is an update to the prior advisory and has proof of concept information included.
c393ae6ab531915e2acb692f6020047cdc37cf5d9d3b83c4a942acc19474f947Due to a unspecified bug in the Western Digital My Net N600, N750, N900 and N900C routers, administrative credentials are stored in plain text and are easily accessible from a remote location on the WAN side of the router.
bf88aed4d696455490d5a2c74cfe20b56aa34c64165c1b2bd7b7ccbb82331b9bZoom X4 and X5 modems suffers from authentication bypass and remote SQL injection vulnerabilities.
e6d22d7021bfb287cc6ae6f292362183cb62e754091ade52c2acd1b0086f7d72Linksys versions EA2700, EA3500, E4200, EA4500 using lighttpd 1.4.28 and Utopia on Linux 2.6.22 suffer from an unauthenticated access vulnerability.
266da9dd8a7b398661ea49b23a60a0543c4ac5cb9c8e7faecc5ce203cbee23b6ASUS RT-N66U when HTTPS WebService via AiCloud is enabled suffers from a remote directory traversal vulnerability.
49327cffa6d3c90aec45f8ddba02a4c2918c77baa0ce204bd262799e2497c4bb
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed