VARIoT IoT exploits database

VAR-E-202101-0084 |
CVE-2020-17519 |
Apache Flink 1.11.0 - Unauthenticated Arbitrary File Read (Metasploit) - Java webapps Exploit
Related entries in the VARIoT vulnerabilities database: VAR-202101-0146 | EDB ID: 49398 |
Apache Flink 1.11.0 - Unauthenticated Arbitrary File Read (Metasploit). CVE-2020-17519 . webapps exploit for Java platform
VAR-E-202012-0027 |
CVE-2018-7580 |
Philips Hue Denial Of Service
Related entries in the VARIoT vulnerabilities database: VAR-202012-1268 | No EDB ID |
Philips Hue hubs suffer from a denial of service vulnerability via simple SYN floods.
VAR-E-202012-0353 | No CVE | Linksys RE6500 1.0.11.001 Remote Code Execution | No EDB ID |
Linksys RE6500 version 1.0.11.001 unauthenticated remote code execution exploit.
VAR-E-202012-0228 | No CVE | Linksys RE6500 1.0.11.001 - Unauthenticated RCE - Hardware webapps Exploit | EDB ID: 49270 |
Linksys RE6500 1.0.11.001 - Unauthenticated RCE.. webapps exploit for Hardware platform
VAR-E-202012-0227 | No CVE | Sony Playstation 4 (PS4) < 7.02 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC) - Hardware webapps Exploit | EDB ID: 49309 |
Sony Playstation 4 (PS4) < 7.02 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC).. webapps exploit for Hardware platform
VAR-E-202012-0099 | No CVE | Eaton Intelligent Power Manager 1.6 - Directory Traversal | EDB ID: 48614 |
VAR-E-202011-0147 | No CVE | VTiger v7.0 CRM - 'To' Persistent XSS - PHP webapps Exploit | EDB ID: 49090 |
VTiger v7.0 CRM - 'To' Persistent XSS.. webapps exploit for PHP platform
VAR-E-202011-0061 | No CVE | Vtiger CRM 7.0 Cross Site Scripting | No EDB ID |
Vtiger CRM version 7.0 suffers from a persistent cross site scripting vulnerability.
VAR-E-202011-0163 | No CVE | Cisco 7937G Denial Of Service / Privilege Escalation | No EDB ID |
Cisco 7937G suffers from denial of service and privilege escalation vulnerabilities.
VAR-E-202011-0110 | No CVE | Cisco 7937G - DoS/Privilege Escalation - Hardware remote Exploit | EDB ID: 49057 |
Cisco 7937G - DoS/Privilege Escalation.. remote exploit for Hardware platform
VAR-E-202011-0179 |
CVE-2018-9285 |
ASUS TM-AC1900 - Arbitrary Command Execution (Metasploit) - Hardware webapps Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201804-1341 | EDB ID: 49036 |
ASUS TM-AC1900 - Arbitrary Command Execution (Metasploit).. webapps exploit for Hardware platform
VAR-E-202011-0048 | No CVE | Sony Playstation 4 (PS4) < 6.72 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC) - Hardware webapps Exploit | EDB ID: 49308 |
Sony Playstation 4 (PS4) < 6.72 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC).. webapps exploit for Hardware platform
VAR-E-202011-0011 |
CVE-2020-25015 |
Genexis Platinum-4410 P4410-V2-1.28 - Broken Access Control and CSRF - Hardware webapps Exploit
Related entries in the VARIoT vulnerabilities database: VAR-202009-0727 | EDB ID: 49000 |
Genexis Platinum-4410 P4410-V2-1.28 - Broken Access Control and CSRF. CVE-2020-25015 . webapps exploit for Hardware platform
VAR-E-202011-0114 | No CVE | Apache Flink 1.9.x - File Upload RCE (Unauthenticated) - Java webapps Exploit | EDB ID: 48978 |
Apache Flink 1.9.x - File Upload RCE (Unauthenticated).. webapps exploit for Java platform
VAR-E-202011-0291 | No CVE | Apache Flink 1.9.x Shell Upload | No EDB ID |
Apache Flink version 1.9.x suffers from a remote code execution vulnerability via a malicious upload.
VAR-E-202010-0085 | No CVE | Genexis Platinum-4410 P4410-V2-1.28 Cross Site Request Forgery | No EDB ID |
Genexis Platinum-4410 version P4410-V2-1.28 suffers from a cross site request forgery vulnerability.
VAR-E-202010-0039 | No CVE | Genexis Platinum-4410 P4410-V2-1.28 - Cross Site Request Forgery to Reboot - Hardware webapps Exploit | EDB ID: 48972 |
Genexis Platinum-4410 P4410-V2-1.28 - Cross Site Request Forgery to Reboot.. webapps exploit for Hardware platform
VAR-E-202010-0140 | No CVE | Genexis Platinum-4410 Cross Site Scripting | No EDB ID |
The Genexis Platinum-4410 router suffers from a persistent cross site scripting vulnerability.
VAR-E-202010-0069 | No CVE | Genexis Platinum-4410 - 'SSID' Persistent XSS - Hardware webapps Exploit | EDB ID: 48948 |
Genexis Platinum-4410 - 'SSID' Persistent XSS.. webapps exploit for Hardware platform
VAR-E-202009-0057 | No CVE | D-Link DGS-1210-28 Denial Of Service | No EDB ID |
D-Link DGS-1210-28 suffers from a denial of service vulnerability.