CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Packet Storm•added 2024/09/01 12:0 a.m.•323 views

Apache Axis2 Brute Force Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/loginscanner/axis2' require 'metasploit/framework/credentialcollection' class MetasploitModule 'Apache Axis2 Brute Force Utility',...

10CVSS7AI score0.89871EPSS

Exploits17

Metasploit•added 2012/04/15 1:13 p.m.•64 views

Axis2 / SAP BusinessObjects Authenticated Code Execution (via SOAP)

This module logs in to an Axis2 Web Admin Module instance using a specific user/pass and uploads and executes commands via deploying a malicious web service by using SOAP. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framewo...

10CVSS7AI score0.89871EPSS

Exploits17

Saint•added 2011/02/22 12:0 a.m.•490 views

HP Universal CMDB Server Axis2 default password

Added: 02/22/2011 CVE: CVE-2010-0219 BID: 45625 OSVDB: 70233 Background HP Universal CMDB Server 9.0 is a modular management system that consists of a rich business-service-oriented data model with built-in discovery of configuration items CIs and configuration item dependencies, visualization an...

10CVSS8.2AI score0.89871EPSS

Exploits17

Saint•added 2011/02/22 12:0 a.m.•47 views

HP Universal CMDB Server Axis2 default password

10CVSS8.2AI score0.89871EPSS

Exploits17

Exploit DB•added 2010/12/14 12:0 a.m.•77 views

Axis2 / SAP BusinessObjects - (Authenticated) Code Execution (via SOAP) (Metasploit)

$Id: axis2deployer.rb 11330 2010-12-14 17:26:44Z egypt $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

10CVSS7AI score0.89871EPSS

Exploits17

Circl•added 2010/12/14 12:0 a.m.•66 views

CVE-2010-0219

creationtimestamp| type| source ---|---|--- 2010-12-14 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16315 2010-12-14 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16312 2010-12-30 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/15869 2018-05-29...

10CVSS5.8AI score0.89871EPSS

In wildExploits17References7

securityvulns•added 2010/10/24 12:0 a.m.•90 views

R7-0037: SAP BusinessObjects Axis2 Default Admin Password

R7-0037: SAP BusinessObjects Axis2 Default Admin Password October 13th, 2010 Description: The SAP BusinessObjects product contains a module dswsbobje.war which deploys Axis2 with an administrator account which is configured with a static password. As a result, anyone with access to the Axis2 port...

10CVSS8AI score0.89871EPSS

Exploits17

CVE•added 2010/10/18 4:0 p.m.•290 views

CVE-2010-0219

CVE-2010-0219 covers Apache Axis2 default credentials that affect dswsbobje.war in SAP BusinessObjects Enterprise XI 3.2 and CA ARCserve D2D r15 among others. The issue arises from a default admin password (axis2), enabling remote attackers to upload a crafted web service and achieve arbitrary co...

10CVSS7.8AI score0.89871EPSS

In wildExploits17References14Affected Software2

Packet Storm•added 2010/10/15 12:0 a.m.•47 views

Rapid7 Security Advisory 37

10CVSS0.7AI score0.89871EPSS

Exploits17

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by