Sven Fassbender

8 exploits Active since Mar 2018
CVE-2018-7171 NOMISEC HIGH WORKING POC
Twonky Server 7.0.11-8.5 - Directory Traversal via contentbase Parameter
Directory traversal vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to share the contents of arbitrary directories via a .. (dot dot) in the contentbase parameter to rpc/set_all.
11 stars
CVSS 7.5
CVE-2018-9160 NOMISEC CRITICAL WORKING POC
SickRage < 2018.03.09-1 - Unprotected Credential Exposure via HTTP Response
SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses.
CVSS 9.8
CVE-2018-7171 WRITEUP HIGH WORKING POC
Twonky Server 7.0.11-8.5 - Directory Traversal via contentbase Parameter
Directory traversal vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to share the contents of arbitrary directories via a .. (dot dot) in the contentbase parameter to rpc/set_all.
CVSS 7.5
CVE-2018-9148 EXPLOITDB CRITICAL python WORKING POC
Western Digital My Cloud Firmware v04.05.00-320 - Authentication Bypass via Session Token in Filename
Western Digital WD My Cloud v04.05.00-320 devices embed the session token (aka PHPSESSID) in filenames, which makes it easier for attackers to bypass authentication by listing a directory. NOTE: this can be exploited in conjunction with CVE-2018-7171 for remote authentication bypass within a product that uses My Cloud.
CVSS 9.8
CVE-2018-9160 METASPLOIT CRITICAL ruby WORKING POC
SickRage < 2018.03.09-1 - Unprotected Credential Exposure via HTTP Response
SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses.
CVSS 9.8
CVE-2018-7203 EXPLOITDB MEDIUM text WRITEUP
Twonky Server 7.0.11-8.5 - Cross-Site Scripting via Friendlyname Parameter
Cross-site scripting (XSS) vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to inject arbitrary web script or HTML via the friendlyname parameter to rpc/set_all.
CVSS 6.1
CVE-2018-7171 EXPLOITDB HIGH python WORKING POC
Twonky Server 7.0.11-8.5 - Directory Traversal via contentbase Parameter
Directory traversal vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to share the contents of arbitrary directories via a .. (dot dot) in the contentbase parameter to rpc/set_all.
CVSS 7.5
CVE-2018-9160 EXPLOITDB CRITICAL python WORKING POC
SickRage < 2018.03.09-1 - Unprotected Credential Exposure via HTTP Response
SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses.
CVSS 9.8