CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

Packet Storm•added 2024/08/31 12:0 a.m.•197 views

SysAid Help Desk Database Credentials Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'openssl' class MetasploitModule 'SysAid Help Desk Database Credentials Disclosure', 'Description' = %q This module exploits a vulnerability in SysAid Help Desk...

8.5CVSS7AI score0.88235EPSS

Exploits10

Circl•added 2018/05/29 3:50 p.m.•7 views

CVE-2015-2998

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/sysaidsqlcreds.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:39+00:00| seen|...

5CVSS4.8AI score0.62156EPSS

Exploits7References1

CVE•added 2015/06/08 2:0 p.m.•49 views

CVE-2015-2998

SysAid Help Desk (before version 15.2) is affected by CVE-2015-2998 due to a hardcoded encryption key used to encrypt sensitive data. The vulnerability allows remote attackers to obtain sensitive information by decrypting the database password stored in WEB-INF/conf/serverConf.xml, as demonstrate...

5CVSS6.6AI score0.62156EPSS

Exploits7References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by