EXPLOITS
results for » author:LiquidWorm
page: 1
LiquidWorm Daikin Security Gateway 14 - Remote Password Reset
local multiple
LiquidWorm ABB Cylon Aspect 3.08.02 (ethernetUpdate.php) - Authenticated Path Traversal
hardware php
LiquidWorm ABB Cylon Aspect 3.08.02 (deployStart.php) - Unauthenticated Command Execution
hardware php CVE-2024-48840
LiquidWorm ABB Cylon Aspect 3.08.03 (webServerDeviceLabelUpdate.php) - File Write DoS
hardware php
LiquidWorm ABB Cylon Aspect 4.00.00 (factorySaved.php) - Unauthenticated XSS
hardware php
LiquidWorm ABB Cylon Aspect 4.00.00 (factorySetSerialNum.php) - Remote Code Execution
hardware php
LiquidWorm ABB Cylon Aspect 3.08.02 - Cross-Site Request Forgery (CSRF)
hardware multiple CVE-2024-48846
LiquidWorm ABB Cylon Aspect 3.08.02 - Cookie User Password Disclosure
hardware multiple CVE-2024-51546
LiquidWorm ABB Cylon Aspect 3.08.03 - Hard-coded Secrets
webapps multiple
LiquidWorm ABB Cylon Aspect 3.08.03 (MapServicesHandler) - Authenticated Reflected XSS
webapps multiple
LiquidWorm ABB Cylon Aspect 3.07.02 (userManagement.php) - Weak Password Policy
hardware multiple CVE-2024-48845
LiquidWorm ABB Cylon Aspect 3.08.03 (CookieDB) - SQL Injection
hardware multiple
LiquidWorm ABB Cylon Aspect 3.08.02 (webServerUpdate.php) - Input Validation Config Poisoning
hardware php
LiquidWorm ABB Cylon Aspect 3.08.02 (escDevicesUpdate.php) - Denial of Service (DOS)
hardware php CVE-2024-48844
LiquidWorm ABB Cylon Aspect 3.08.02 (bbmdUpdate.php) - Remote Code Execution
hardware multiple CVE-2024-6516;CVE-2024-51550;CVE-2024-48839
LiquidWorm ABB Cylon Aspect 3.08.02 (uploadDb.php) - Remote Code Execution
hardware multiple CVE-2024-48839