Daily Archives: June 5, 2020

Castel NextGen DVR 1.0.0 Bypass / CSRF / Disclosure ≈ Packet Storm

June 5th, 2020 📆 | 1909 Views ⚑

All issues are associated with *Castel NextGen DVR v1.0.0 *and have beenresolved in v1.0.1*.* ——————————-*CVE-2020-11679* *Original Disclosure*https://www.securitymetrics.com/blog/attackers-known-unknown-authorization-bypass *Description*A low privileged

Tagged with:




Cisco UCS Director Cloupia Script Remote Code Execution ≈ Packet Storm

June 5th, 2020 📆 | 5120 Views ⚑

### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClientinclude Msf::Exploit::Remote::AutoCheckinclude Msf::Exploit::CmdStager

Tagged with:




Avaya IP Office 11 Insecure Transit / Password Disclosure ≈ Packet Storm

June 5th, 2020 📆 | 7733 Views ⚑

+] Credits: John Page (aka hyp3rlinx) +] Website: hyp3rlinx.altervista.org+] Source: http://hyp3rlinx.altervista.org/advisories/AVAYA-IP-OFFICE-INSECURE-TRANSIT-PASSWORD-DISCLOSURE.txt+] twitter.com/hyp3rlinx+] ISR: ApparitionSec Vendor]www.avaya.com Product]Avaya IP Office v9.1.8.0 –

Tagged with:




WinGate 9.4.1.5998 Insecure Permissions / Privilege Escalation ≈ Packet Storm

June 5th, 2020 📆 | 2730 Views ⚑

+] Credits: John Page (aka hyp3rlinx) +] Website: hyp3rlinx.altervista.org+] Source: http://hyp3rlinx.altervista.org/advisories/WINGATE-INSECURE-PERMISSIONS-LOCAL-PRIVILEGE-ESCALATION.txt+] twitter.com/hyp3rlinx+] ISR: ApparitionSec Vendor]wingate.com Product]WinGate v9.4.1.5998 WinGate is a

Tagged with: