Lucene search
K

30 matches found

GithubExploit
GithubExploit
added 2026/01/21 5:3 a.m.159 views

Exploit for SQL Injection in Progress Moveit_Cloud

MOVEit Transfer 2023 Mass Data Breach Overview This reposi...

9.8CVSS8.8AI score0.99934EPSS
Exploits15
GithubExploit
GithubExploit
added 2025/07/28 5:55 a.m.130 views

Exploit for SQL Injection in Progress Moveit_Cloud

CVE-2023-34362: Vulnerability Defense Package This repository...

9.8CVSS10AI score0.99934EPSS
Exploits15
GithubExploit
GithubExploit
added 2024/06/28 5:13 p.m.293 views

Exploit for SQL Injection in Progress Moveit_Cloud

CVE-2023-34362: MOVEit Transfer Unauthenticated RCE For a ful...

9.8CVSS9.9AI score0.99934EPSS
Exploits15
GithubExploit
GithubExploit
added 2023/08/31 1:25 p.m.546 views

Exploit for SQL Injection in Progress Moveit_Cloud

MOVEit Exploit an exploit of POC for CVE-2023-34362 affe...

9.8CVSS10AI score0.99934EPSS
Exploits15
GithubExploit
GithubExploit
added 2023/08/07 8:55 p.m.313 views

Exploit for Improper Input Validation in Lexmark Cxtpc_Firmware

CVE-2023-34362 POCs for credential dumping, reverse shells, an...

9.8CVSS9.5AI score0.99934EPSS
Exploits18
Broadcom
Broadcom
added 2023/07/27 12:0 a.m.68 views

CVE-2023-34362 - a SQL injection vulnerability has been found in the MOVEit Transfer web application.

In Progress MOVEit Transfer before 2021.0.6 13.0.6, 2021.1.4 13.1.4, 2022.0.4 14.0.4, 2022.1.5 14.1.5, and 2023.0.1 15.0.1, a SQL injection vulnerability has been found in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain access to MOVEit Transfer's database...

9.8CVSS9.8AI score0.99934EPSS
Exploits15
GithubExploit
GithubExploit
added 2023/07/09 6:44 p.m.389 views

Exploit for SQL Injection in Progress Moveit_Cloud

CVE-2023-34362 POC for CVE-2023-34362 affecting MOVEit Transfe...

9.8CVSS10AI score0.99934EPSS
Exploits15
0day.today
0day.today
added 2023/06/26 12:0 a.m.520 views

MOVEit SQL Injection Exploit

This Metasploit module exploits an SQL injection vulnerability in the MOVEit Transfer web application that allows an unauthenticated attacker to gain access to MOVEit Transfer's database. Depending on the database engine being used MySQL, Microsoft SQL Server, or Azure SQL, an attacker can levera...

9.8CVSS8.2AI score0.99934EPSS
Exploits15
Rapid7 Blog
Rapid7 Blog
added 2023/06/23 7:1 p.m.54 views

Metasploit Weekly Wrap-Up

I like to MOVEit, MOVEit, We like to MOVEit! Party hard just like it's Mardi Gras! bwatters-r7 delivered the dance moves this week with a masterful performance. The windows/http/moveitcve202334362 module is available for all your party needs, taking advantage of CVE-2023-34362, this module gets...

7.5CVSS8.2AI score0.99934EPSS
Exploits15
Metasploit
Metasploit
added 2023/06/22 7:50 p.m.535 views

MOVEit SQL Injection vulnerability

This module exploits an SQL injection vulnerability in the MOVEit Transfer web application that allows an unauthenticated attacker to gain access to MOVEit Transfer's database. Depending on the database engine being used MySQL, Microsoft SQL Server, or Azure SQL, an attacker can leverage an...

9.8CVSS9.2AI score0.99934EPSS
Exploits15
Talos Blog
Talos Blog
added 2023/06/16 6:17 p.m.42 views

Active exploitation of the MOVEit Transfer vulnerability — CVE-2023-34362 — by Clop ransomware group

Cisco Talos is monitoring recent reports of exploitation attempts against CVE-2023-34362, a SQL injection zero-day vulnerability in the MOVEit Transfer managed file transfer MFT solution that has been actively targeted since late May 2023. Successful exploitation could lead to remote code executi...

7.5CVSS10.9AI score0.99934EPSS
Exploits15
Wallarm Lab
Wallarm Lab
added 2023/06/16 6:5 a.m.60 views

What You Need To Know About MOVEit

The MOVEit Vulnerabilities and Latest Exploits. Impact On Governmental Agencies And Large Organizations Governmental agencies and large organizations around the world are being hit by ransomware attacks exploiting several vulnerabilities in MOVEit, a widely used file transfer solution. The...

7.5CVSS11AI score0.99934EPSS
Exploits15
hivepro
hivepro
added 2023/06/13 6:58 a.m.53 views

Actors, Threats and Vulnerabilities 5 June to 11 June 2023

For a detailed threat digest, download the pdf file here Summary HiveForce Labs recently made several significant discoveries related to cybersecurity threats. Over the past week, the fact that there were a total of seven attacks executed, taking advantage of five different vulnerabilities in...

9.3CVSS6.9AI score0.99934EPSS
Exploits77
GithubExploit
GithubExploit
added 2023/06/12 12:56 p.m.437 views

Exploit for SQL Injection in Progress Moveit_Cloud

It is an exploit module for MOVEit Transfer. The vulnerability i...

9.8CVSS10AI score0.99934EPSS
Exploits15
Malwarebytes
Malwarebytes
added 2023/06/12 2:0 a.m.39 views

More MOVEit vulnerabilities found while the first one still resonates

In early June, we reported on the discovery of a critical vulnerability in MOVEit Transfer--known as CVE-2023-34362. After the first vulnerability was discovered, MOVEit's owner Progress Software partnered with third-party cybersecurity experts to conduct further detailed code reviews of the...

7.5CVSS8.6AI score0.99934EPSS
Exploits15
GithubExploit
GithubExploit
added 2023/06/09 7:7 p.m.265 views

Exploit for SQL Injection in Progress Moveit_Cloud

CVE-2023-34362 POC for CVE-2023-34362 affecting MOVEit Transfe...

9.8CVSS10AI score0.99934EPSS
Exploits15
Qualys Blog
Qualys Blog
added 2023/06/07 5:28 p.m.48 views

Progress MOVEit Transfer Vulnerability Being Actively Exploited

On June 2nd, CVE-2023-34362 was published against the Progress MOVEit Transfer product and was quickly added to CISA’s Known Exploited Vulnerabilities Catalog. MOVEit Transfer is a managed file transfer solution available as an on-premise solution that enables file transfer between business...

7.5CVSS10.5AI score0.99934EPSS
Exploits15
ICS
ICS
added 2023/06/07 12:0 p.m.62 views

#StopRansomware: CL0P Ransomware Gang Exploits CVE-2023-34362 MOVEit Vulnerability

Actions to take today to mitigate cyber threats from CL0P ransomware: 1. Take an inventory of assets and data, identifying authorized and unauthorized devices and software. 2. Grant admin privileges and access only when necessary, establishing a software allow list that only executes legitimate...

9.8CVSS8.7AI score0.99999EPSS
Exploits27References77
Imperva Blog
Imperva Blog
added 2023/06/06 3:55 p.m.55 views

CVE-2023-34362 – MOVEit Transfer – An attack chain that retrieves sensitive information

MOVEit Transfer is a popular secure file transfer solution developed by Progress, a subsidiary of Ipswitch. At the moment, there are more than 2,500 MOVEit Transfer servers that are accessible from the internet, according to Shodan. On May 31, 2023, Progress released a security advisory affecting...

7.5CVSS8.7AI score0.99934EPSS
Exploits15
Malwarebytes
Malwarebytes
added 2023/06/06 1:0 a.m.370 views

Cl0p ransomware gang claims first victims of the MOVEit vulnerability

On Friday June 2, 2023 we reported about a MOVEit Transfer vulnerability that was actively being exploited. If your organization uses MOVEit Transfer and you havent patched yet, it really is time to move it. Excuse the bad pun, but yesterday we saw the first victims of this vulnerability come...

7.5CVSS8.2AI score0.99934EPSS
Exploits15
Rows per page
Query Builder