On Netis DL4323 devices, XSS exists via the form2userconfig.cgi username parameter (User Account Configuration). Date published : 2019-12-29 https://drive.google.com/open?id=1CxLrSKAczEZpm_7FERIrCGGJAs2mp6Go https://drive.google.com/open?id=1puObYuPWktesaVW1SO8uvSr1g4SnAtAw
On Netis DL4323 devices, XSS exists via the form2Ddns.cgi hostname parameter (Dynamic DNS Configuration). Date published : 2019-12-29 https://drive.google.com/open?id=1IGRYVci8fxic0jJJb-pAfAK1kJ4V2yGM https://drive.google.com/open?id=1VPEX136-JaVDeY0JgQTqRNdMTPOhfEN7
On Netis DL4323 devices, CSRF exists via form2logaction.cgi to delete all logs. Date published : 2019-12-29 https://drive.google.com/open?id=1XtSsH-1ApxRS7VExubz8zBEyENVQGhUc https://drive.google.com/open?id=1p4HJ5C20TqY0rVNffdD5Zd7S_bGvDhnk
On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi (aka the Keyword field of the URL Blocking Configuration). Date published : 2019-12-29 https://drive.google.com/open?id=1EtpCu6eZ0Hf2J70zg59wIlhUE8_bx1HE https://drive.google.com/open?id=1vIHv-UY0QLdnxDi-RW1hQHrdcuho0HRf
hdf/dataobject.c in libmysofa before 0.8 has an uninitialized use of memory, as demonstrated by mysofa2json. Date published : 2019-12-29 https://github.com/hoene/libmysofa/compare/v0.7…v0.8 https://github.com/hoene/libmysofa/issues/67
** DISPUTED ** Bolt 3.7.0, if Symfony Web Profiler is used, allows XSS because unsanitized search?search= input is shown on the _profiler page. NOTE: this is disputed because profiling was never intended for use...
com.proxyman.NSProxy.HelperTool in Privileged Helper Tool in Proxyman for macOS 1.11.0 and earlier allows an attacker to change the System Proxy and redirect all traffic to an attacker-controlled computer, enabling MITM attacks. Date published :...
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has an assertion failure in stbi__shiftsigned. Date published : 2019-12-29 https://github.com/saitoha/libsixel/issues/126
LuquidPixels LiquiFire OS 4.8.0 allows SSRF via the call%3Durl substring followed by a URL in square brackets. Date published : 2019-12-28 https://code610.blogspot.com/2019/12/testing-ssrf-in-liquifireos.html
thttpd 2007 has buffer underflow. Date published : 2019-12-27 http://taviso.decsystem.org/research.t2t
Multiple stack-based buffer overflows in CFProfile.exe in Toshiba ConfigFree Utility 8.0.38 allow user-assisted attackers to execute arbitrary code. Date published : 2019-12-27 http://www.securityfocus.com/bid/55644 https://exchange.xforce.ibmcloud.com/vulnerabilities/78801
Collabtive 1.0 has incorrect access control Date published : 2019-12-27 https://www.immuniweb.com/advisory/HTB23169
Multiple Vivotek IP Cameras remote authentication bypass that could allow access to the video stream Date published : 2019-12-27 http://www.coresecurity.com/advisories/vivotek-ip-cameras-rtsp-authentication-bypass http://www.exploit-db.com/exploits/29516
AVTECH AVN801 DVR has a security bypass via the administration login captcha Date published : 2019-12-27 http://seclists.org/fulldisclosure/2013/Aug/284 http://www.securityfocus.com/bid/62035