VARIoT IoT exploits database
| VAR-E-201404-0126 | No CVE | ICOMM 610 Wireless Modem Cross Site Request Forgery | No EDB ID |
ICOMM 610 wireless modem suffers from a cross site request forgery vulnerability.
| VAR-E-201404-0067 | No CVE | ICOMM 610 Wireless Modem - Cross-Site Request Forgery - Hardware remote Exploit | EDB ID: 39138 |
ICOMM 610 Wireless Modem - Cross-Site Request Forgery. CVE-105363 . remote exploit for Hardware platform
| VAR-E-201404-0306 | No CVE | ICOMM 610 Wireless Modem - CSRF Vulnerability | No EDB ID |
| VAR-E-201403-0101 |
CVE-2013-0662 |
SEIG Modbus 3.4 - Remote Code Execution - Windows_x86 remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201404-0081 | EDB ID: 45220 |
SEIG Modbus 3.4 - Remote Code Execution. CVE-2013-0662 . remote exploit for Windows_x86 platform
| VAR-E-201403-0100 |
CVE-2013-0662 |
SEIG Modbus 3.4 - Denial of Service (PoC) - Windows_x86 dos Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201404-0081 | EDB ID: 45219 |
SEIG Modbus 3.4 - Denial of Service (PoC). CVE-2013-0662 . dos exploit for Windows_x86 platform
| VAR-E-201403-0276 | No CVE | D-Link DIR-600L Cross Site Request Forgery | No EDB ID |
D-Link DIR-600L hardware version AX and firmware version 1.00 suffers from a cross site request forgery vulnerability.
| VAR-E-201403-0008 | No CVE | D-Link DIR-600L '/goform/formSetPassword' Cross Site Request Forgery Vulnerability | No EDB ID |
D-Link DIR-600L is prone to a cross-site request-forgery vulnerability.
Exploiting this issue may allow a remote attacker to perform certain unauthorized actions. This may lead to further attacks.
D-Link DIR-600L 5.10 is vulnerable; other versions may also be affected.
| VAR-E-201403-0587 | No CVE | D-Link DIR-615 Multiple Security Vulnerabilities | No EDB ID |
D-Link DIR-615 is prone to the following security vulnerabilities:
1. An authentication-bypass vulnerability
2. A cross-site request-forgery vulnerability
3. An HTML-injection vulnerability
4. Multiple information disclosure vulnerabilities
An attacker can exploit these issues to execute HTML and arbitrary script code in the browser of an unsuspecting user in the context of the affected device, steal cookie-based authentication credentials, bypass-authentication mechanisms, or gain access to potentially sensitive information. Other attacks are also possible.
D-Link DIR-615 router running firmware version 5.10 and below are vulnerable.
| VAR-E-201403-0523 | No CVE | D-Link DIR-615 Cross Site Request Forgery Vulnerability | No EDB ID |
D-Link DIR-615 is prone to a cross-site request-forgery vulnerability.
Exploiting this issue may allow a remote attacker to perform certain unauthorized actions. This may lead to further attacks.
D-Link DIR-615 Rev. H1 running firmware version 8.0A and lower are vulnerable.
| VAR-E-201403-0281 | No CVE | Ubee EVW3200 Cross Site Scripting | No EDB ID |
Ubee EVW3200 suffers from multiple persistent cross site scripting vulnerabilities.
| VAR-E-201403-0394 | No CVE | Ubee EVW3200 Cross Site Request Forgery | No EDB ID |
Ubee EVW3200 suffers from a cross site request forgery vulnerability.
| VAR-E-201403-0519 | No CVE | Ubee EVW3200 - Cross Site Request Forgery Vulnerability | No EDB ID |
| VAR-E-201403-0225 | No CVE | Ubee EVW3200 - Multiple Persistent Cross-Site Scripting Vulnerabilities - Hardware webapps Exploit | EDB ID: 32237 |
Ubee EVW3200 - Multiple Persistent Cross-Site Scripting Vulnerabilities. CVE-104458CVE-104457 . webapps exploit for Hardware platform
| VAR-E-201403-0403 | No CVE | Ubee EVW3200 - Cross-Site Request Forgery - Hardware webapps Exploit | EDB ID: 32238 |
Ubee EVW3200 - Cross-Site Request Forgery. CVE-104456 . webapps exploit for Hardware platform
| VAR-E-201403-0636 | No CVE | Ubee EVW3200 - Multiple Persistent Cross Site Scripting Vulnerability | No EDB ID |
| VAR-E-201403-0077 | No CVE | Huawei E5331 MiFi Mobile Hotspot 21.344.11.00.414 - Multiple Vulnerabilities - Hardware webapps Exploit | EDB ID: 32161 |
Huawei E5331 MiFi Mobile Hotspot 21.344.11.00.414 - Multiple Vulnerabilities. CVE-104433CVE-104432 . webapps exploit for Hardware platform
| VAR-E-201403-0415 | No CVE | D-Link DIR-600 Multiple Cross-Site Request Forgery Vulnerabilities | No EDB ID |
D-Link DIR-600 is prone to multiple cross-site request-forgery vulnerabilities.
Exploiting these issues may allow a remote attacker to perform certain unauthorized actions. This may lead to further attacks.
| VAR-E-201403-0310 | No CVE | D-Link DSL-2640U Multiple Cross Site Request Forgery Vulnerabilities | No EDB ID |
D-Link DSL-2640U is prone to multiple cross-site request-forgery vulnerabilities.
Exploiting these issues may allow a remote attacker to perform certain unauthorized actions. This may lead to further attacks.
D-Link DSL-2640U 1.0.24WW and prior are vulnerable.
| VAR-E-201403-0196 |
CVE-2013-6037 |
AKER Secure Mail Gateway 2.5.2 Cross Site Scripting
Related entries in the VARIoT vulnerabilities database: VAR-201403-0131 | No EDB ID |
| VAR-E-201403-0243 |
CVE-2014-0784 |
Yokogawa CENTUM CS 3000 - 'BKBCopyD.exe' Remote Buffer Overflow (Metasploit) - Windows remote Exploit
Related entries in the VARIoT vulnerabilities database: VAR-201403-0448 | EDB ID: 32210 |
Yokogawa CENTUM CS 3000 - 'BKBCopyD.exe' Remote Buffer Overflow (Metasploit). CVE-2014-0784CVE-104429 . remote exploit for Windows platform