what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

Files from Daniel Teuchert

Altus Sistemas de Automacao Products CSRF / Command Injection / Hardcoded Credentials

Posted Aug 19, 2021

Authored by T. Weber, Daniel Teuchert | Site sec-consult.com

Multiple Altus Sistemas de Automacao products such as the Nexto NX30xx Series, Nexto NX5xxx Series, Nexto Xpress XP3xx Series, and Hadron Xtorm HX3040 Series suffer from command injection, cross site request forgery, and hardcoded credential vulnerabilities.

tags | exploit, vulnerability, csrf

advisories | CVE-2021-39243

SHA-256 | 04419f303d6024196a934d7a822a54ec4c5ef330f60bde124f5af5cb94703343

Download | Favorite | View

Atlassian Products Cross Site Scripting

Posted Oct 9, 2020

Authored by Roman Ferdigg, Daniel Teuchert | Site sec-consult.com

Multiple Atlassian products suffer from persistent cross site scripting vulnerabilities. Vulnerable products include PlantUML version 6.43, Refined Toolkit for Confluence version 2.2.5, Linking for Confluence version 5.5.3, Countdown Timer version 1.7.0, and Server Status version 1.2.1.

tags | exploit, vulnerability, xss

SHA-256 | ce9579674629da339f235d6da72456d507989a8ca7f24f0714d41988b64f5ec5

Download | Favorite | View