VARIoT IoT exploits database
| VAR-E-201807-0173 | No CVE | NUUO NVRmini - 'upgrade_handle.php' Remote Command Execution - Hardware webapps Exploit | EDB ID: 45070 |
NUUO NVRmini - 'upgrade_handle.php' Remote Command Execution.. webapps exploit for Hardware platform
| VAR-E-201807-0135 |
CVE-2018-14336 |
TP-Link TL-WR840N - Denial of Service - Hardware dos Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201807-1490 | EDB ID: 45064 |
TP-Link TL-WR840N - Denial of Service. CVE-2018-14336 . dos exploit for Hardware platform
| VAR-E-201807-0257 | No CVE | Sony Playstation 4 (PS4) - PS4 5.05 BPF Double Free Kernel Exploit Writeup | EDB ID: 45045 |
| VAR-E-201807-0205 | No CVE | ASUS WRT-AC66U 3.x Cross Site Scripting | No EDB ID |
ASUS WRT-AC66U version 3.x suffers from a cross site scripting vulnerability.
| VAR-E-201807-0091 | No CVE | D-Link DIR601 2.02 Credential Disclosure | No EDB ID |
D-Link DIR601 version 2.02 suffers from a credential disclosure vulnerability.
| VAR-E-201807-0259 | No CVE | D-Link DIR601 2.02 - Credential Disclosure Vulnerability | No EDB ID |
| VAR-E-201807-0315 | No CVE | D-Link DIR601 2.02 - Credential Disclosure - Hardware webapps Exploit | EDB ID: 45002 |
D-Link DIR601 2.02 - Credential Disclosure.. webapps exploit for Hardware platform
| VAR-E-201807-0264 | No CVE | Delta Industrial Automation COMMGR 1.08 - Stack Buffer Overflow Exploit | No EDB ID |
| VAR-E-201807-0093 |
CVE-2018-12571 |
Microsoft Forefront Unified Access Gateway 2010 External DNS Interaction
Related entries in the VARIoT vulnerabilities database: VAR-201807-1264 | No EDB ID |
Microsoft Forefront Unified Access Gateway 2010 allows remote attackers to trigger outbound DNS queries for arbitrary hosts via a comma-separated list of URLs in the orig_url parameter, possibly causing a traffic amplification and/or SSRF outcome.
| VAR-E-201807-0027 |
CVE-2018-10594 |
Delta Electronics Delta Industrial Automation COMMGR 1.08 - Stack Buffer Overflow (Metasploit) - Windows remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201806-0554 | EDB ID: 45574 |
Delta Electronics Delta Industrial Automation COMMGR 1.08 - Stack Buffer Overflow (Metasploit). CVE-2018-10594 . remote exploit for Windows platform
| VAR-E-201807-0028 |
CVE-2018-10594 |
Delta Industrial Automation COMMGR 1.08 - Stack Buffer Overflow (PoC) - Hardware dos Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201806-0554 | EDB ID: 44965 |
Delta Industrial Automation COMMGR 1.08 - Stack Buffer Overflow (PoC). CVE-2018-10594 . dos exploit for Hardware platform
| VAR-E-201807-0141 |
CVE-2018-7520 |
Geutebruck 5.02024 G-Cam/EFD-2250 - 'simple_loglistjs.cgi' Remote Command Execution (Metasploit) - Hardware webapps Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201803-2213 | EDB ID: 44957 |
Geutebruck 5.02024 G-Cam/EFD-2250 - 'simple_loglistjs.cgi' Remote Command Execution (Metasploit).. webapps exploit for Hardware platform
| VAR-E-201806-0126 | No CVE | DIGISOL DG-BR4000NG - Buffer Overflow Vulnerability | No EDB ID |
| VAR-E-201806-0377 | No CVE | TP-Link TL-WA850RE - Remote Command Execution Exploit | No EDB ID |
| VAR-E-201806-0403 | No CVE | DIGISOL DG-BR4000NG - Cross-Site Scripting Vulnerability | No EDB ID |
| VAR-E-201806-0124 | No CVE | hycus CMS 1.0.4 - Authentication Bypass Vulnerability | No EDB ID |
| VAR-E-201806-0363 |
CVE-2018-12575 |
TP-Link TL-WR841N V13 Insecure Direct Object Reference
Related entries in the VARIoT vulnerabilities database: VAR-201807-1255 | No EDB ID |
TP-Link TL-WR841N v13 suffers from an authentication bypass vulnerability via an insecure direct object reference vulnerability.
| VAR-E-201806-0422 |
CVE-2018-12577 |
TP-Link TL-WR841N V13 Command Injection
Related entries in the VARIoT vulnerabilities database: VAR-201807-1257 | No EDB ID |
TP-Link TL-WR841N v13 suffers from a blind command injection vulnerability.
| VAR-E-201806-0239 |
CVE-2018-12574 |
TP-Link TL-WR841N V13 Cross Site Request Forgery
Related entries in the VARIoT vulnerabilities database: VAR-201807-1265 | No EDB ID |
TP-Link TL-WR841N v13 suffers from cross site request forgery vulnerabilities.
| VAR-E-201806-0320 | No CVE | hycus CMS 1.0.4 SQL Injection | No EDB ID |
hycus CMS version 1.0.4 suffers from a remote SQL injection vulnerability that allows for authentication bypass.