RedTeam Pentesting discovered several backdoors in the firmware for the Auerswald COMpact 5500R PBX. These backdoors allow attackers who are able to access the web-based management application full administrative access…
Croogo 3.0.2 – Remote Code Execution (Authenticated)
Auerswald COMpact 8.0B – Multiple Backdoors
Auerswald COMpact 8.0B – Arbitrary File Disclosure
Auerswald COMfortel 2.8F – Authentication Bypass
Auerswald COMpact 8.0B – Privilege Escalation
HCL Lotus Notes V12 – Unquoted Service Path
DuckDuckGo version 7.64.4 suffers from an address bar spoofing vulnerability.
Trojan.Win32.Mucc.ivk malware suffers from an unquoted service path vulnerability.
Online Pre-Owned / Used Car Showroom Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.