Sven Fassbender

7 exploits Active since Mar 2018
CVE-2018-7171 NOMISEC HIGH WORKING POC
Lynxtechnology Twonky Server < 8.5 - Path Traversal
Directory traversal vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to share the contents of arbitrary directories via a .. (dot dot) in the contentbase parameter to rpc/set_all.
11 stars
CVSS 7.5
CVE-2018-9160 NOMISEC CRITICAL WORKING POC
Sickrage < 9.2.101 - Insufficiently Protected Credentials
SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses.
CVSS 9.8
CVE-2018-9148 EXPLOITDB CRITICAL python WORKING POC
Westerndigital MY Cloud Firmware - Authentication Bypass
Western Digital WD My Cloud v04.05.00-320 devices embed the session token (aka PHPSESSID) in filenames, which makes it easier for attackers to bypass authentication by listing a directory. NOTE: this can be exploited in conjunction with CVE-2018-7171 for remote authentication bypass within a product that uses My Cloud.
CVSS 9.8
CVE-2018-9160 METASPLOIT CRITICAL ruby WORKING POC
Sickrage < 9.2.101 - Insufficiently Protected Credentials
SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses.
CVSS 9.8
CVE-2018-7171 EXPLOITDB HIGH python WORKING POC
Lynxtechnology Twonky Server < 8.5 - Path Traversal
Directory traversal vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to share the contents of arbitrary directories via a .. (dot dot) in the contentbase parameter to rpc/set_all.
CVSS 7.5
CVE-2018-7203 EXPLOITDB MEDIUM text WRITEUP
Lynxtechnology Twonky Server < 8.5 - XSS
Cross-site scripting (XSS) vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to inject arbitrary web script or HTML via the friendlyname parameter to rpc/set_all.
CVSS 6.1
CVE-2018-9160 EXPLOITDB CRITICAL python WORKING POC
Sickrage < 9.2.101 - Insufficiently Protected Credentials
SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses.
CVSS 9.8