Lucene search
K

201 matches found

CVE
CVE
added 2022/08/10 4:5 p.m.65 views

CVE-2022-38130

CVE-2022-38130 affects Keysight SMS (com.keysight.tentacle.config.ResourceManager.smsRestoreDatabaseZip). An unauthenticated, remote attacker can supply an UNC path to a zipped HSQLDB database, causing the database content to be restored and potentially enabling remote code execution as described...

9.8CVSS9.4AI score0.53389EPSS
In wildExploits0References1Affected Software1
Kitploit
Kitploit
added 2020/09/07 2:38 a.m.218 views

SQLMap v1.4.9 - Automatic SQL Injection And Database Takeover Tool

SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lastin...

8.5AI score
Exploits0References9
GithubExploit
GithubExploit
added 2020/07/10 3:33 p.m.456 views

Exploit for Path Traversal in F5 Big-Ip_Access_Policy_Manager

F5 BIG-IP RCE CVE-2020-5902 Vulnerability Detection Tool ==...

10CVSS7.1AI score0.99999EPSS
Exploits60
0day.today
0day.today
added 2020/07/07 12:0 a.m.243 views

BIG-IP 15.0.0 < 15.1.0.3 - Traffic Management User Interface (TMUI) Remote Code Execution Exploit

Exploit for linux platform in category web applications BIG-IP 15.0.0 " echo exit 1 fi server=$1?hostname argument required localip=$2?Locaip argument required port=$3?Port argument required if ! -f $server.der then echo "$server.der does not exist - extracting cert" openssl sclient \ -showcerts ...

10CVSS10AI score0.99999EPSS
Exploits60
BDU FSTEC
BDU FSTEC
added 2020/06/19 12:0 a.m.7 views

The vulnerability of the relational SQL database HSQLDB, related to the exposure of static Java methods, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the relational SQL database HSQLDB is related to the exposure of static Java methods. Exploiting this vulnerability can allow an attacker operating remotely to gain access to confidential data, compromise its integrity, and even cause service failures...

9.9CVSS5.6AI score0.14347EPSS
Exploits3References5Affected Software4
Openbugbounty
Openbugbounty
added 2020/06/04 11:47 p.m.10 views

hsqldb.10974.n7.nabble.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1184682 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

6.1AI score
Exploits0
Kitploit
Kitploit
added 2019/10/03 12:0 p.m.120 views

SQLMap v1.3.10 - Automatic SQL Injection And Database Takeover Tool

SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lastin...

8.5AI score
Exploits0References20
n0where
n0where
added 2018/11/12 5:20 a.m.78 views

Automatic SQL injection and database takeover tool: sqlmap

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lastin...

Exploits0References2
Kitploit
Kitploit
added 2018/09/07 12:57 p.m.96 views

SQLMap v1.2.9 - Automatic SQL Injection And Database Takeover Tool

SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lastin...

8.5AI score
Exploits0References20
Veracode
Veracode
added 2018/09/05 1:13 a.m.31 views

Remote Code Execution (RCE)

HSQLDB is vulnerable to remote code execution. The static methods of all available Java classes can be accessed as functions using crafted database documents when the system property hsqldb.methodclassnames is not set. A remote attacker is able to exploit the vulnerability to execute arbitrary Ja...

9.3CVSS7.3AI score0.14347EPSS
Exploits3References41Affected Software17
Kitploit
Kitploit
added 2017/08/28 9:13 p.m.105 views

SQLMap v1.1.8 - Automatic SQL Injection And Database Takeover Tool

SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lastin...

8.5AI score
Exploits0References20
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

JBoss 3.0.8/3.2.1 HSQLDB Remote Command Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8773/info A remote command-injection vulnerability has been reported in JBoss. The issue is reportedly exposed via the HSQLDB component, which is a SQL database server that manages JMS connections. Because of a number of...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.44 views

RHEL 5 : JBoss EAP (RHSA-2008:0213)

New JBoss Enterprise Application Platform JBEAP packages, comprising the 4.2.0.CP02 release, are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. JBEAP is a middleware platform for Java 2 Platform,...

9.3CVSS6.1AI score0.39681EPSS
Exploits7References12
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.30 views

RHEL 5 : openoffice.org, hsqldb (RHSA-2007:1048)

Updated openoffice.org and hsqldb packages that fix security flaws are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenOffice.org is an office productivity suite. HSQLDB is a Java relational...

9.3CVSS6.5AI score0.15059EPSS
Exploits3References6
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.41 views

Scientific Linux Security Update : openoffice.org, hsqldb on SL5.x i386/x86_64

It was discovered that HSQLDB could allow the execution of arbitrary public static Java methods. A carefully crafted odb file opened in OpenOffice.org Base could execute arbitrary commands with the permissions of the user running OpenOffice.org. CVE-2007-4575 It was discovered that HSQLDB did not...

9.3CVSS6.4AI score0.15059EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.30 views

Scientific Linux Security Update : openoffice.org2 on SL4.5 i386/x86_64

It was discovered that HSQLDB could allow the execution of arbitrary public static Java methods. A carefully crafted odb file opened in OpenOffice.org Base could execute arbitrary commands with the permissions of the user running OpenOffice.org. CVE-2007-4575 %NASLMINLEVEL 70300 C Tenable Network...

9.3CVSS5.9AI score0.14347EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2010/01/06 12:0 a.m.54 views

CentOS 5 : openoffice.org / hsqldb (CESA-2007:1048)

Updated openoffice.org and hsqldb packages that fix security flaws are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenOffice.org is an office productivity suite. HSQLDB is a Java relational...

9.3CVSS6.5AI score0.15059EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.43 views

Mandriva Linux Security Advisory : openoffice.org (MDVSA-2008:095)

A vulnerability in HSQLDB before 1.8.0.9 in OpenOffice.org could allow user-assisted remote attackers to execute arbitrary Java code via crafted database documents CVE-2007-4575. A heap overflow was discovered in OpenOffice.org's EMF parser. An attacker could create a carefully crafted EMF file...

9.3CVSS6.2AI score0.57015EPSS
Exploits13References5
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.26 views

Mandriva Update for openoffice.org MDVSA-2008:095 (openoffice.org)

Check for the Version of openoffice.org OpenVAS Vulnerability Test Mandriva Update for openoffice.org MDVSA-2008:095 openoffice.org Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

9.3CVSS0.3AI score0.57015EPSS
Exploits13References2
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.49 views

Mandriva Update for openoffice.org MDVSA-2008:095 (openoffice.org)

Check for the Version of openoffice.org OpenVAS Vulnerability Test Mandriva Update for openoffice.org MDVSA-2008:095 openoffice.org Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

9.3CVSS0.3AI score0.57015EPSS
Exploits13References2
Rows per page
Query Builder