exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

Files from Oleg Broslavsky

Citrix NetScaler SD-WAN SQL Injection / Traversal / Command Injection

Posted Oct 23, 2018

Authored by Sergey Gordeychik, Denis Kolegov, Nikita Oleksov, Nikolay Tkachenko, Oleg Broslavsky

The management interfaces of Citrix NetScaler SD-WAN physical appliances and virtual appliances suffer from command injection, information exposure, incorrect access control, IP spoofing, remote SQL injection, and directory traversal vulnerabilities.

tags | advisory, remote, spoof, vulnerability, sql injection, file inclusion

advisories | CVE-2012-2104, CVE-2016-4793, CVE-2018-17444, CVE-2018-17445, CVE-2018-17446, CVE-2018-17447, CVE-2018-17448

SHA-256 | e7627b90298023da272c5c16d0da665c56143382a6c2331b9af84784625a3870

Download | Favorite | View

Silver Peak EdgeConnect 8.1.4.9_65644 XSS / DoS / Disclosure / Traversal

Posted Aug 17, 2018

Authored by Denis Kolegov, Antony Nikolaev, Nikita Oleksov, Nikolay Tkachenko, Maxim Gorbunov, Sergey Gordeychick, Oleg Broslavsky

Silver Peak EdgeConnect version 8.1.4.9_65644 suffers from brute force, information leakage, cross site request forgery, cross site scripting, denial of service, default SNMP community string, and path traversal vulnerabilities.

tags | exploit, denial of service, vulnerability, xss, csrf

SHA-256 | b42452437467664a92247a8da4abc4bab26c4a029cebeb2baf14a4b90f2bc2ec

Download | Favorite | View