what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 26 - 27 of 27

Files from Wolfgang Ettlinger

Symantec Web Gateway XSS / CSRF / SQL Injection / Command Injection

Posted Jul 26, 2013

Authored by Wolfgang Ettlinger | Site sec-consult.com

Symantec Web Gateway versions 5.1.0.* and below suffer from cross site request forgery, cross site scripting, command injection, and remote SQL injection vulnerabilities.

tags | exploit, remote, web, vulnerability, xss, sql injection, csrf

advisories | CVE-2013-1616, CVE-2013-1617, CVE-2013-4670, CVE-2013-4671, CVE-2013-4672

SHA-256 | f5687779117e75bfab54e5c4e26cfc839c5928b756b4cf1652789d76e8d5aadc

Download | Favorite | View

Sophos Web Protection Appliance 3.7.8.1 XSS / Command Execution

Posted Apr 3, 2013

Authored by Wolfgang Ettlinger | Site sec-consult.com

Sophos Web Protection Appliance version 3.7.8.1 suffers from OS command injection, cross site scripting, and file disclosure vulnerabilities.

tags | exploit, web, vulnerability, xss

advisories | CVE-2013-2641, CVE-2013-2642, CVE-2013-2643

SHA-256 | e23113a1748c2be870f5cf2ef66700daa14d3f01fcf098583228dcf13f1434ee

Download | Favorite | View