Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2017-03-31 CVE-2015-4624 Improper Access Control vulnerability in Hak5 Wi-Fi Pineapple Firmware
Hak5 WiFi Pineapple 2.0 through 2.3 uses predictable CSRF tokens.
high complexity
hak5 CWE-284
7.5
7.5
2017-03-31 CVE-2014-9114 Command Injection vulnerability in multiple products
Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary code.
local
low complexity
opensuse fedoraproject kernel CWE-77
7.8
7.8
2017-03-31 CVE-2014-5009 Command Injection vulnerability in multiple products
Snoopy allows remote attackers to execute arbitrary commands.
network
low complexity
snoopy redhat nagios CWE-77
critical
 9.8
9.8
2017-03-31 CVE-2014-5008 Command Injection vulnerability in multiple products
Snoopy allows remote attackers to execute arbitrary commands.
network
low complexity
snoopy redhat debian CWE-77
critical
 9.8
9.8
2017-03-31 CVE-2014-3931 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Multi-Router Looking Glass Project Multi-Router Looking Glass 5.4.1
fastping.c in MRLG (aka Multi-Router Looking Glass) before 5.5.0 allows remote attackers to cause an arbitrary memory write and memory corruption.
network
low complexity
multi-router-looking-glass-project CWE-119
critical
 9.8
9.8
2017-03-31 CVE-2008-7313 Command Injection vulnerability in multiple products
The _httpsrequest function in Snoopy allows remote attackers to execute arbitrary commands.
network
low complexity
snoopy redhat nagios CWE-77
critical
 9.8
9.8
2017-03-31 CVE-2017-7363 Cross-site Scripting vulnerability in Lucidcrew Pixie 1.04
Pixie 1.0.4 allows an admin/index.php s=publish&m=module&x= XSS attack.
network
low complexity
lucidcrew CWE-79
6.1
6.1
2017-03-31 CVE-2017-7362 Cross-site Scripting vulnerability in Lucidcrew Pixie 1.04
Pixie 1.0.4 allows an admin/index.php s=publish&m=dynamic&x= XSS attack.
network
low complexity
lucidcrew CWE-79
6.1
6.1
2017-03-31 CVE-2017-7361 Cross-site Scripting vulnerability in Lucidcrew Pixie 1.04
Pixie 1.0.4 allows an admin/index.php s=publish&m=static&x= XSS attack.
network
low complexity
lucidcrew CWE-79
6.1
6.1
2017-03-31 CVE-2017-7360 Cross-site Scripting vulnerability in Lucidcrew Pixie 1.04
Pixie 1.0.4 allows an admin/index.php s=settings&x= XSS attack.
network
low complexity
lucidcrew CWE-79
6.1
6.1