CVE-2015-3337

creationtimestamp| type| source ---|---|--- 2023-12-06 13:16:12+00:00| seen| https://t.me/arpsyndicate/1488...

ai.grakn:grakn-dist (>=0.7.0 <=0.16.0), ai.grakn:grakn-test (=0.10.0) +94 more potentially affected by CVE-2015-3337 via org.elasticsearch:elasticsearch (>=1.5.0 <=1.5.1)

org.elasticsearch:elasticsearch MAVEN version =1.5.0, =0.7.0, =0.6.1, =0.11.0, =0.1.2, =1.0.0, =1.1, =1.5.0, =1.5.0, =0.9.0-M2, =1.0.0 and more Source cves: CVE-2015-3337 Source advisory: OSV:GHSA-X8Q8-4HP5-463W...

ElasticSearch exposure local arbitrary file read vulnerability, impact 1. 4. 5 and 1. 5. Before 2 all versions-bug warning-the black bar safety net

! Recently in exploit-db on the aerator out of the ElasticSearch plug-in functionality directory traversal Path Transversal cause local arbitrary file read vulnerability, impact 1. 4. 5 and 1. 5. Before 2 All version. In zoomeye on casually looking for a few tried, found vulnerabilities in the ar...

ElasticSearch 1.4.5 / 1.5.2 - Path Transversal Vulnerability

Exploit for php platform in category web applications !/usr/bin/python Crappy PoC for CVE-2015-3337 - Reported by John Heasman of DocuSign Affects all ElasticSearch versions prior to 1.5.2 and 1.4.5 Pedro Andujar || twitter: pandujar || email: @segfault.es || @digitalsec.net Tested on default Lin...

ElasticSearch 1.4.5 1.5.2 - Directory Traversal

ElasticSearch 1.4.5 1.5.2 - Directory Traversal !/usr/bin/python Crappy PoC for CVE-2015-3337 - Reported by John Heasman of DocuSign Affects all ElasticSearch versions prior to 1.5.2 and 1.4.5 Pedro Andujar || twitter: pandujar || email: @segfault.es || @digitalsec.net Tested on default Linux .de...

ElasticSearch &lt; 1.4.5 / &lt; 1.5.2 - Directory Traversal

!/usr/bin/python Crappy PoC for CVE-2015-3337 - Reported by John Heasman of DocuSign Affects all ElasticSearch versions prior to 1.5.2 and 1.4.5 Pedro Andujar || twitter: pandujar || email: @segfault.es || @digitalsec.net Tested on default Linux .deb install /usr/share/elasticsearch/plugins/...

Elasticsearch vulnerability CVE-2015-3337

Summary: All Elasticsearch versions prior to 1.5.2 and 1.4.5 are vulnerable to a directory traversal attack that allows an attacker to retrieve files from the server running Elasticsearch. This vulnerability is not present in the initial installation of Elasticsearch. The vulnerability is exposed...

CVE-2015-3337

CVE-2015-3337 affects Elasticsearch versions prior to 1.4.5 and 1.5.x prior to 1.5.2. A directory traversal issue in site plugin handling allows remote attackers to read arbitrary server files via unspecified vectors. The NVD/Nuclei references describe the vulnerability as Local File Inclusion th...

ElasticSearch Directory Traversal Proof Of Concept

!/usr/bin/python Crappy PoC for CVE-2015-3337 - Reported by John Heasman of DocuSign Affects all ElasticSearch versions prior to 1.5.2 and 1.4.5 Pedro Andujar || twitter: pandujar || email: @segfault.es || @digitalsec.net Tested on default Linux .deb install /usr/share/elasticsearch/plugins/ impo...