[CVE-2017-15379] E-Sic Software livre CMS - Autentication Bypass

CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-15379
Exploit-DB: https://www.exploit-db.com/exploits/42980/

An authentication bypass exists in the E-Sic 1.0 /index (aka login) URI via '=''or' values for the username and password.

Ver mais

[CVE-2017-15380] E-Sic Software livre CMS - XSS

CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-15380
Exploit-DB: https://www.exploit-db.com/exploits/42983/

XSS exists in the E-Sic 1.0 /cadastro/index.php URI (aka the requester's registration area) via the nome parameter.

Ver mais

[CVE-2017-15381] E-Sic Software livre CMS - Sql Injection

CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-15381
Exploit-DB: https://www.exploit-db.com/exploits/42982/

SQL Injection exists in E-Sic 1.0 via the f parameter to esiclivre/restrito/inc/buscacep.php (aka the zip code search script).

Ver mais

[CVE-2017-15378] E-Sic Software livre CMS - Sql Injection

CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-15378
Exploit-DB: https://www.exploit-db.com/exploits/42981/

SQL Injection exists in the E-Sic 1.0 password reset parameter (aka the cpfcnpj parameter to the /reset URI).

Ver mais

[CVE-2017-15230] Opera Bemobi CMS has Cross-site scripting on the 404 error page.

CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-15230

Opera Bemobi CMS has Cross-site scripting on the 404 error page. The attack vector is any invalid UR

[CVE-2017-15229] XSS intelbras - userRpm/AutoEmailRpm.htm page.

CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-15229

On Intelbras WRN 240 devices, in firmware version 2.0.0, there is a page where you can send the router logs to your email address; that email is sent by GET and saved in the page's HTML source code. This allows XSS via the FromAddr parameter to userRpm/AutoEmailRpm.htm.


CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-14219 Exploit-DB: https://www.exploit-db.com/exploits/42633/

XSS (persistent) on the Intelbras Wireless N 150Mbps router with firmware WRN 240 allows attackers to steal wireless credentials without being connected to the network, related to userRpm/popupSiteSurveyRpm.htm and userRpm/WlanSecurityRpm.htm. The attack vector is a crafted ESSID, as demonstrated by an "airbase-ng -e" command.

Ver mais