Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to messagelog.php. Date published : 2020-02-16 https://sku11army.blogspot.com/2020/01/symmetricom-syncserver.html
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow stored XSS via the newUserName parameter on the "User Creation, Deletion and Password Maintenance" screen (when creating a new...
ELTEX NTP-RG-1402G 1v10 3.25.3.32 devices allow OS command injection via the TRACE field of the resource ping.cmd. The NTP-2 device is also affected. Date published : 2020-02-16 https://sku11army.blogspot.com/2020/01/eltex-devices-ntp-rg-1402g-ntp-2-os.html
ELTEX NTP-RG-1402G 1v10 3.25.3.32 devices allow OS command injection via the PING field of the resource ping.cmd. The NTP-2 device is also affected. Date published : 2020-02-16 https://sku11army.blogspot.com/2020/01/eltex-devices-ntp-rg-1402g-ntp-2-os.html
Iteris Vantage Velocity Field Unit 2.4.2 devices have multiple stored XSS issues in all parameters of the Start Data Viewer feature of the /cgi-bin/loaddata.py script. Date published : 2020-02-16 https://sku11army.blogspot.com/2020/01/iteris-vantage-velocity-field-unit_26.html
Iteris Vantage Velocity Field Unit 2.3.1 and 2.4.2 devices have world-writable permissions for the /root/cleardata.pl (executed as root by crond) and /root/loadperl.sh (executed as root at boot time) scripts. Date published : 2020-02-16 https://sku11army.blogspot.com/2020/01/iteris-vantage-velocity-field-unit.html
Iteris Vantage Velocity Field Unit 2.3.1 and 2.4.2 devices have two users that are not documented and are configured with weak passwords (User bluetooth, password bluetooth; User eclipse, password eclipse). Also, bluetooth is the...
An issue was discovered on Xirrus XR520, XR620, XR2436, and XH2-120 devices. The cgi-bin/ViewPage.cgi user parameter allows XSS. Date published : 2020-02-16 https://sku11army.blogspot.com/2020/01/xirrus-xirrus-wifi-xss.html
Post Oak AWAM Bluetooth Field Device 7400v2.08.21.2018, 7800SD.2015.1.16, 2011.3, 7400v2.02.01.2019, and 7800SD.2012.12.5 is vulnerable to injections of operating system commands through timeconfig.py via shell metacharacters in the htmlNtpServer parameter. Date published : 2020-02-16 https://sku11army.blogspot.com/2020/01/post-oak-traffic-systems-awam-bluetooth.html
Iteris Vantage Velocity Field Unit 2.3.1, 2.4.2, and 3.0 devices allow the injection of OS commands into cgi-bin/timeconfig.py via shell metacharacters in the NTP Server field. Date published : 2020-02-16 https://sku11army.blogspot.com/2020/01/iteris-vantage-velocity-field-unit-os.html
Dolibarr 11.0 allows XSS via the joinfiles, topic, or code parameter, or the HTTP Referer header. Date published : 2020-02-16 https://code610.blogspot.com/2020/02/this-time-i-tried-to-check-one-of.html
Arvato Skillpipe 3.0 allows attackers to bypass intended print restrictions by deleting from the HTML source code. Date published : 2020-02-16 https://twitter.com/GerardFuguet/status/1228462263188758529 https://www.exploit-db.com/docs/48175
A cross-site scripting (XSS) vulnerability in the Import People functionality in Gluu Identity Configuration 4.0 allows remote attackers to inject arbitrary web script or HTML via the filename parameter. Date published : 2020-02-16 https://support.gluu.org/other/7992/reflected-cross-site-scripting-on-import-people/
Codoforum 4.8.8 allows self-XSS via the title of a new topic. Date published : 2020-02-16 https://github.com/matuhn/Research/blob/master/codoforum/readme.md