A directory traversal vulnerability exists in iControl SOAP that allows an authenticated attacker with at least guest role privileges to read wsdl files in the BIG-IP file system. ([CVE-2022-29474]()) ...
Continue Reading
June 23, 2022
Hardcoded credentials in the Ricoh myPrint application 2.9.2.4 for Windows and 2.2.7 for Android give access to any externally disclosed myPrint WSDL API, as demonstrated by discovering API secrets of ...
Continue Reading
June 20, 2022
An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. ...
Continue Reading
June 20, 2022
by Alex Drozdov, Wallarm Research XXE or XML External Entities is a new issue in the 2017 [OWASP Top 10 vulnerability list](). This is the only new issue of the set that was introduced based on direct ...
Continue Reading
June 20, 2022
In CIMTechniques CIMScan 6.x through 6.2, the SOAP WSDL parser allows attackers to execute SQL code.Read More ...
Continue Reading
June 20, 2022
This module exploits inadequate access controls within the webUI to enable the SSH service and change the root password. This module has been tested successfully on: NET5501, NET5501-I, NET5501-XT, NE ...
Continue Reading
May 30, 2022
@geek_jeremy, at the same time as other hackers who submitted their own reports, discovered a browsable WSDL service on an API endpoint under the starbucks.com.cn domain, running on a non-standard por ...
Continue Reading
May 30, 2022
ReadyAPI 2.5.0 2.6.0 - Remote Code ExecutionRead More ...
Continue Reading
May 30, 2022
Back to Main
