#threatintel #security #osint

NETGEAR Orbi WiFi Systems command execution |

NAME__________NETGEAR Orbi WiFi Systems command executionPlatforms Affected:NETGEAR RBR750 NETGEAR RBS750 NETGEAR RBR840 NETGEAR RBS840 NETGEAR RBR850 NETGEAR RBS850 NETGEAR RBRE960 NETGEAR RBSE960 NETGEAR RBRE950 NETGEAR RBSE950Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NETGEAR Orbi…

NETGEAR Orbi WiFi Systems command execution |

NAME__________NETGEAR Orbi WiFi Systems command executionPlatforms Affected:NETGEAR RBR750Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NETGEAR Orbi WiFi Systems could allow a remote authenticated attacker to execute arbitrary commands on the system, caused by a…

NETGEAR Orbi WiFi Systems information disclosure |

NAME__________NETGEAR Orbi WiFi Systems information disclosurePlatforms Affected:NETGEAR RBR750 NETGEAR RBS750 NETGEAR RBR840 NETGEAR RBS840 NETGEAR RBR850 NETGEAR RBS850 NETGEAR RBRE960 NETGEAR RBSE960 NETGEAR RBRE950 NETGEAR RBSE950Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NETGEAR Orbi…

Python CGI module cross-site scripting |

NAME__________Python CGI module cross-site scriptingPlatforms Affected:Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Python CGI module is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability…

Medicine Tracker System page cross-site scripting |

NAME__________Medicine Tracker System page cross-site scriptingPlatforms Affected:Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Medicine Tracker System is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the /php-mts/ endpoint. A remote…

Music Gallery Site page cross-site scripting |

NAME__________Music Gallery Site page cross-site scriptingPlatforms Affected:Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Music Gallery Site is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the /php-music/admin/ endpoint. A remote…

Drupal Core information disclosure |

NAME__________Drupal Core information disclosurePlatforms Affected:Drupal Drupal 9.4.11 Drupal Drupal 9.5.4 Drupal Drupal 10.0.4Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Drupal Core could allow a remote attacker to obtain sensitive information, caused by a flaw…

Unity Technologies Unity code execution |

NAME__________Unity Technologies Unity code executionPlatforms Affected:Unity Technologies UnityRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Unity Technologies Unity could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds write…

Unity Technologies Unity buffer overflow |

NAME__________Unity Technologies Unity buffer overflowPlatforms Affected:Unity Technologies UnityRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Unity Technologies Unity is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by the parsing of FBX…