what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Denis Kolegov

Citrix NetScaler SD-WAN SQL Injection / Traversal / Command Injection

Posted Oct 23, 2018

Authored by Sergey Gordeychik, Denis Kolegov, Nikita Oleksov, Nikolay Tkachenko, Oleg Broslavsky

The management interfaces of Citrix NetScaler SD-WAN physical appliances and virtual appliances suffer from command injection, information exposure, incorrect access control, IP spoofing, remote SQL injection, and directory traversal vulnerabilities.

tags | advisory, remote, spoof, vulnerability, sql injection, file inclusion

advisories | CVE-2012-2104, CVE-2016-4793, CVE-2018-17444, CVE-2018-17445, CVE-2018-17446, CVE-2018-17447, CVE-2018-17448

SHA-256 | e7627b90298023da272c5c16d0da665c56143382a6c2331b9af84784625a3870

Download | Favorite | View

Viprinet VPN Hub Router Cross Site Scripting

Posted Oct 19, 2018

Authored by Denis Kolegov, SD-WAN New Hope Team

Viprinet VPN Hub Router suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 52bc57a1b9cf99352f7f193f1e7f5d546ad57fca447fffb65f78855a2d95b210

Download | Favorite | View

Silver Peak EdgeConnect 8.1.4.9_65644 XSS / DoS / Disclosure / Traversal

Posted Aug 17, 2018

Authored by Denis Kolegov, Antony Nikolaev, Nikita Oleksov, Nikolay Tkachenko, Maxim Gorbunov, Sergey Gordeychick, Oleg Broslavsky

Silver Peak EdgeConnect version 8.1.4.9_65644 suffers from brute force, information leakage, cross site request forgery, cross site scripting, denial of service, default SNMP community string, and path traversal vulnerabilities.

tags | exploit, denial of service, vulnerability, xss, csrf

SHA-256 | b42452437467664a92247a8da4abc4bab26c4a029cebeb2baf14a4b90f2bc2ec

Download | Favorite | View