665 matches found
OGNL Double Evaluation Vulnerability
We have discovered and fixed a vulnerability in our fork of WebWork. Attackers can use this vulnerability to execute Java code of their choice on systems that use this framework. The attacker needs to be able to access the Crucible web interface. All versions of Crucible up to and including 3.6.1...
OGNL Double Evaluation Vulnerability
We have discovered and fixed a vulnerability in our fork of WebWork. Attackers can use this vulnerability to execute Java code of their choice on systems that use this framework. The attacker needs to be able to access the FishEye web interface. All versions of FishEye up to and including 3.6.1 a...
Apache Camel XSLT Component Java Code Execution (CVE-2014-0003)
A code execution vulnerability has been reported in Apache Camel. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted XML message to the vulnerable server. Successful exploitation could result in the execution of arbitrary Java code...
CVE-2014-7296
The default configuration in the accessibility engine in SpagoBI 5.0.0 does not set FEATURESECUREPROCESSING, which allows remote authenticated users to execute arbitrary Java code via a crafted XSL document...
Default configuration
The default configuration in the accessibility engine in SpagoBI 5.0.0 does not set FEATURESECUREPROCESSING, which allows remote authenticated users to execute arbitrary Java code via a crafted XSL document...
CVE-2014-7296
CVE-2014-7296 affects SpagoBI 5.0.0: the accessibility engine’s default config does not enable FEATURE_SECURE_PROCESSING, allowing remote authenticated users to execute arbitrary Java code through a crafted XSL document. Impact is code execution with partial confidentiality/integrity/availability...
RHEL 6 : katello-configure (RHSA-2014:1186)
An updated katello-configure package that fixes one security issue is now available for Red Hat Subscription Asset Manager. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
elasticsearch: remote code execution flaw via dynamic scripting
It was discovered that the default configuration of Elasticsearch enabled dynamic scripting, allowing a remote attacker to execute arbitrary MVEL expressions and Java code via the source parameter passed to search...
elasticsearch: remote code execution flaw via dynamic scripting
It was discovered that the default configuration of Elasticsearch enabled dynamic scripting, allowing a remote attacker to execute arbitrary MVEL expressions and Java code via the source parameter passed to search...
Default configuration
The default configuration in Elasticsearch before 1.2 enables dynamic scripting, which allows remote attackers to execute arbitrary MVEL expressions and Java code via the source parameter to search. NOTE: this only violates the vendor's intended security policy if the user does not run...
Openfire <= 3.6.0a Admin Console Authentication Bypass
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...
Apache Struts < 2.2.0 - Remote Command Execution
No description provided by source. $Id: strutscodeexec.rb 13586 2011-08-19 05:59:32Z bannedit $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...
Trigerring Java Code from a SVG Image
No description provided by source...
CoffeeCup Software Password Wizard 4.0 HTML Source Password Retrieval Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7023/info A problem with the software may make it possible for remote users to gain unauthorized access to restricted resources. This vulnerability exists in Password Wizard configured to generate Java applets to password...
ElasticSearch Dynamic Script Arbitrary Java Execution
Exploit for java platform in category remote exploits This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'ElasticSearch Dynamic Script Arbitrary Java Execution', 'Description' = %q This...
ElasticSearch Dynamic Script Arbitrary Java Execution
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'ElasticSearch Dynamic Script Arbitrary Java Execution', 'Description' = %q This module exploits a remote command execution...
ElasticSearch Dynamic Script - Arbitrary Java Execution (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'ElasticSearch Dynamic Script Arbitrary Java Execution', 'Description' = %q This module exploits a remote command execution...
ElasticSearch < 1.2.0 代码执行漏洞
Elasticsearch是一个流行的开源的搜索和分析引擎。这是一个远程命令执行漏洞利用Elasticsearch,利用Elasticsearch 1.2.0 之前版本的默认配置。问题出现在 REST API,在没有身份认证的情况下,搜索功能允许动态脚本执行,可用于远程该漏洞被发现在其他的原料药,这并不需要验证,在搜索功能允许动态脚本执行。攻击者可以利用它远程执行任何 Java 代码。手动测试:读取目标机器的 /etc/passwd 和 /etc/hostscurl -XPOST 'http://localhost:9200/search?pretty' -d ' "size": 1,...
Adobe Reader Mobile JavaScript Interface Java Code Execution (CVE-2014-0514)
A code execution vulnerability exists in Adobe Mobile Reader for Android. The vulnerability is due to a failure to restrict access to certain JavaScript interfaces. A remote unauthenticated attacker could exploit this vulnerability by enticing a target user to open a crafted document...
Apache Struts Security Update (S2-020) - Active Check
ClassLoader Manipulation allows remote attackers to execute arbitrary Java code. Copyright C 2014 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...