what you don't know can hurt you
Showing 1 - 25 of 786 RSS Feed

Files from LiquidWorm

Real NameGjoko Krstic
Email addressprivate
First Active2007-07-26
Last Active2021-10-11
View User Profile
Cypress Solutions CTM-200 2.7.1 Root Remote OS Command Injection
Posted Oct 11, 2021
Authored by LiquidWorm | Site zeroscience.mk

Cypress Solutions CTM-200 wireless gateway version 2.7.1 suffers from an authenticated semi-blind OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands as the root user through the 'ctm-config-upgrade.sh' script leveraging the 'fw_url' POST parameter used in the cmd upgreadefw as argument, called by ctmsys() as pointer to execv() and make_wget_url() function to the wget command in /usr/bin/cmdmain ELF binary.

tags | exploit, arbitrary, shell, root
MD5 | 5443c1ca578d802c9f7cf55428781490
Cypress Solutions CTM-200/CTM-ONE Hard-Coded Credentials Remote Root
Posted Oct 11, 2021
Authored by LiquidWorm | Site zeroscience.mk

Cypress Solutions CTM-200/CTM-ONE suffers from a hard-coded credential remote root vulnerability via telnet and ssh.

tags | exploit, remote, root
MD5 | 4dc0da6ff777de3e071d0c7c9de1daba
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Privilege Escalation
Posted Sep 28, 2021
Authored by LiquidWorm | Site zeroscience.mk

FatPipe Networks WARP/IPVPN/MPVPN version 10.2.2 suffers from a remote privilege escalation vulnerability.

tags | exploit, remote
MD5 | 55a8a0546a607614640ebbecb5a328b5
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Backdoor Account
Posted Sep 28, 2021
Authored by LiquidWorm | Site zeroscience.mk

FatPipe Networks WARP/IPVPN/MPVPN version 10.2.2 has the hidden administrative account cmuser that has no password and has write access permissions to the device. The user cmuser is not visible in the Users menu list of the application.

tags | exploit
MD5 | 721e7699e457e1b541391eb73901ef17
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Configuration Disclosure
Posted Sep 28, 2021
Authored by LiquidWorm | Site zeroscience.mk

FatPipe Networks WARP/IPVPN/MPVPN version 10.2.2 is vulnerable to an unauthenticated configuration disclosure when a direct object reference is made to the backup archive file using an HTTP GET request.

tags | exploit, web
MD5 | da8637d64e3f521a27e2cda56950dc36
FatPipe Networks WARP 10.2.2 Authorization Bypass
Posted Sep 28, 2021
Authored by LiquidWorm | Site zeroscience.mk

FatPipe Networks WARP version 10.2.2 suffers from an authorization bypass vulnerability.

tags | exploit, bypass
MD5 | 6ccac54a795446dd5b9905280e95e65d
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Cross Site Request Forgery
Posted Sep 28, 2021
Authored by LiquidWorm | Site zeroscience.mk

The application interface FatPipe Networks WARP/IPVPN/MPVPN version 10.2.2 allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malicious web site.

tags | exploit, web
MD5 | ebc740be2b0dc7aea958ed27ca4a91bf
COMMAX CVD-Axx DVR 5.1.4 Weak Default Credentials Stream Disclosure
Posted Aug 16, 2021
Authored by LiquidWorm | Site zeroscience.mk

COMMAX CVD-Axx DVR version 5.1.4 uses a weak set of default administrative credentials that can be easily guessed in remote password attacks and used to disclose the RTSP stream.

tags | exploit, remote
MD5 | 0313e6536d17a0ea4f5f7b0302aee78b
COMMAX Smart Home Ruvie CCTV Bridge DVR Service Unauthenticated Config Write / DoS
Posted Aug 16, 2021
Authored by LiquidWorm | Site zeroscience.mk

COMMAX Smart Home Ruvie CCTV Bridge DVR Service suffers from unauthenticated configuration writing and denial of service vulnerabilities.

tags | exploit, denial of service, vulnerability
MD5 | 33cb8b029963ff91bd33a5ce0566a7a6
COMMAX Smart Home Ruvie CCTV Bridge DVR Service RTSP Credential Disclosure
Posted Aug 16, 2021
Authored by LiquidWorm | Site zeroscience.mk

COMMAX Smart Home Ruvie CCTV Bridge suffers from a credential disclosure vulnerability.

tags | exploit
MD5 | 0d5d3a5130f6133e1e168518382d87aa
COMMAX UMS Client ActiveX Control 1.7.0.2 Buffer Overflow
Posted Aug 16, 2021
Authored by LiquidWorm | Site zeroscience.mk

COMMAX UMS Client ActiveX Control version 1.7.0.2 suffers from a heap buffer overflow vulnerability.

tags | exploit, overflow, activex
MD5 | bdfacbe95822d7a922e557839d7caedf
COMMAX WebViewer ActiveX Control 2.1.4.5 Buffer Overflow
Posted Aug 16, 2021
Authored by LiquidWorm | Site zeroscience.mk

COMMAX WebViewer ActiveX Control version 2.1.4.5 suffers from a buffer overflow vulnerability.

tags | exploit, overflow, activex
MD5 | 7cda77f5ebe6338698bf2d78e0a14d04
COMMAX Smart Home IoT Control System CDP-1020n SQL Injection
Posted Aug 16, 2021
Authored by LiquidWorm | Site zeroscience.mk

COMMAX Smart Home IoT Control System CDP-1020n suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 5566bcf92f20e034df8e647a0947dd43
COMMAX Biometric Access Control System 1.0.0 Authentication Bypass
Posted Aug 16, 2021
Authored by LiquidWorm | Site zeroscience.mk

COMMAX Biometric Access Control System version 1.0.0 suffers from a authentication bypass vulnerability.

tags | exploit, bypass
MD5 | 30872997d53a89ccd87660764948a6b3
COMMAX Biometric Access Control System 1.0.0 Cross Site Scripting
Posted Aug 16, 2021
Authored by LiquidWorm | Site zeroscience.mk

COMMAX Biometric Access Control System version 1.0.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 7bf5f2cdb78f902a98c85a7c700aacd6
Panasonic Sanyo CCTV Network Camera 2.03-0x Cross Site Request Forgery
Posted Jul 30, 2021
Authored by LiquidWorm | Site zeroscience.mk

Panasonic Sanyo CCTV Network Camera version 2.03-0x allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. These actions can be exploited to perform authentication detriment and account password change with administrative privileges if a logged-in user visits a malicious web site.

tags | exploit, web
MD5 | 144372220bfafa4d89dbf4f8e47b37df
Longjing Technology BEMS API 1.21 Remote Arbitrary File Download
Posted Jul 29, 2021
Authored by LiquidWorm | Site zeroscience.mk

Longjing Technology BEMS API version 1.21 suffers from an unauthenticated arbitrary file download vulnerability. Input passed through the fileName parameter through downloads endpoint is not properly verified before being used to download files. This can be exploited to disclose the contents of arbitrary and sensitive files through directory traversal attacks.

tags | exploit, arbitrary
MD5 | 6a5637ce7d7f32fbc3a3c1f0931505e7
IntelliChoice eFORCE Software Suite 2.5.9 Username Enumeration
Posted Jul 29, 2021
Authored by LiquidWorm | Site zeroscience.mk

IntelliChoice eFORCE Software Suite version 2.5.9 allows for username enumeration.

tags | exploit
MD5 | 3dbce8c7f3ef261ca1360be805297f27
KevinLAB BEMS 1.0 Authenticated File Path Traversal / Information Disclosure
Posted Jul 20, 2021
Authored by LiquidWorm | Site zeroscience.mk

KevinLAB BEMS version 1.0 suffers from an authenticated arbitrary file disclosure vulnerability. Input passed through the page GET parameter in index.php is not properly verified before being used to include files. This can be exploited to disclose the contents of arbitrary and sensitive files via directory traversal attacks.

tags | exploit, arbitrary, php
MD5 | 4bc3f448faf6a5df2c5354ab9084063b
KevinLAB BEMS 1.0 Unauthenticated SQL Injection / Authentication Bypass
Posted Jul 20, 2021
Authored by LiquidWorm | Site zeroscience.mk

KevinLAB BEMS version 1.0 suffers from an unauthenticated SQL Injection vulnerability. Input passed through input_id POST parameter in /http/index.php is not properly sanitized before being returned to the user or used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code to bypass the authentication mechanism.

tags | exploit, web, arbitrary, php, sql injection
MD5 | 3498bc654a493cbf9b46522829eb067c
KevinLAB BEMS 1.0 Undocumented Backdoor Account
Posted Jul 20, 2021
Authored by LiquidWorm | Site zeroscience.mk

KevinLAB BEMS version 1.0 has an undocumented backdoor account and the sets of credentials are never exposed to the end-user and cannot be changed through any normal operation of the solution thru the RMI. Attacker could exploit this vulnerability by logging in using the backdoor account with highest privileges for administration and gain full system control. The backdoor user cannot be seen in the users settings in the admin panel and it also uses an undocumented privilege level (admin_pk=1) which allows full availability of the features that the BEMS is offering remotely.

tags | exploit
MD5 | a9e653ecb20d44dc4da9b97ffbe54252
Ricon Industrial Cellular Router S9922XL Remote Command Execution
Posted Jul 5, 2021
Authored by LiquidWorm | Site zeroscience.mk

Ricon Industrial Cellular Router S9922XL suffers from an authenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands as the admin (root) user via the ping_server_ip POST parameter. It is also vulnerable to Heartbleed.

tags | exploit, arbitrary, shell, root
MD5 | 23fc8665a81e1f9a6166b3c13847b608
Epic Games Easy Anti-Cheat 4.0 Local Privilege Escalation
Posted May 7, 2021
Authored by LiquidWorm | Site zeroscience.mk

Epic Games Easy Anti-Cheat version 4.0 suffers from a local privilege escalation vulnerability.

tags | exploit, local
MD5 | 20d43a191de2ac386670c70f501ff4ba
Epic Games Rocket League 1.95 Stack Buffer Overrun
Posted May 3, 2021
Authored by LiquidWorm | Site zeroscience.mk

Epic Games Rocket League version 1.95 suffers from a stack-based buffer overflow vulnerability. The issue is caused due to a boundary error in the processing of a UPK format file, which can be exploited to cause a stack buffer overflow when a user crafts the file with a large array of bytes inserted in the vicinity offset after the magic header. Successful exploitation could allow execution of arbitrary code on the affected machine.

tags | exploit, overflow, arbitrary
MD5 | ba2e463a8ce18d40968287a8781e6309
Epic Games Rocket League 1.95 Insecure Permissions
Posted May 3, 2021
Authored by LiquidWorm | Site zeroscience.mk

Epic Games Rocket League versions 1.95 and below suffer from an insecure permissions vulnerability.

tags | exploit
MD5 | 9ed5a4f67cb00f02b0ffb67ded384d2c
Page 1 of 32
Back12345Next

File Archive:

October 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    16 Files
  • 2
    Oct 2nd
    1 Files
  • 3
    Oct 3rd
    1 Files
  • 4
    Oct 4th
    24 Files
  • 5
    Oct 5th
    24 Files
  • 6
    Oct 6th
    11 Files
  • 7
    Oct 7th
    14 Files
  • 8
    Oct 8th
    19 Files
  • 9
    Oct 9th
    1 Files
  • 10
    Oct 10th
    0 Files
  • 11
    Oct 11th
    7 Files
  • 12
    Oct 12th
    15 Files
  • 13
    Oct 13th
    26 Files
  • 14
    Oct 14th
    10 Files
  • 15
    Oct 15th
    6 Files
  • 16
    Oct 16th
    2 Files
  • 17
    Oct 17th
    1 Files
  • 18
    Oct 18th
    14 Files
  • 19
    Oct 19th
    15 Files
  • 20
    Oct 20th
    20 Files
  • 21
    Oct 21st
    12 Files
  • 22
    Oct 22nd
    14 Files
  • 23
    Oct 23rd
    3 Files
  • 24
    Oct 24th
    1 Files
  • 25
    Oct 25th
    33 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close