32 matches found
Msmailprobe - Office 365 And Exchange Enumeration
Office 365 and Exchange Enumeration It is widely known that OWA Outlook Webapp is vulnerable to time-based user enumeration attacks. This tool leverages all known, and even some lesser-known services exposed by default Exchange installations to enumerate users. It also targets Office 365 for...
CVE-2019-9105
The WebApp v04.68 in the supervisor on SAET Impianti Speciali TEBE Small 05.01 build 1137 devices allows remote attackers to make several types of API calls without authentication, as demonstrated by retrieving password hashes via an inc/utils/RESTAPI.php?command=CallAPI&customurl=alladminusers...
CVE-2018-19518
University of Washington IMAP Toolkit 2007f on UNIX, as used in imapopen in PHP and other products, launches an rsh command by means of the imaprimap function in c-client/imap4r1.c and the tcpaopen function in osdep/unix/tcpunix.c without preventing argument injection, which might allow remote...
Information Disclosure
atlas-webapp is vulnerable to information disclosure. The library prints sensitive information in its stack trace error logs. A malicious user can then access sensitive information stored on these logs...
IBM 1754 GCM 1.18.0.22011 - Remote Command Execution
IBM 1754 GCM 1.18.0.22011 - Remote Command Execution I. Product description The IBM 1754 GCM family provides KVM over IP and serial console management technology in a single appliance. II. Vulnerability information Impact: Command execution Remotely exploitable: yes CVE: 2013-0526 CVS Score: 8.5...
Quotationally SQL Injection Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
CVE-2007-1180
WebAPP before 0.9.9.5 does not check referrers in certain forms, which might facilitate remote cross-site request forgery CSRF attacks or have other unknown impact...
CVE-2007-1182
WebAPP before 0.9.9.5 allows remote Guest users to edit a Guest profile, which has unknown impact...
CVE-2007-1188
WebAPP before 0.9.9.5 allows remote attackers to submit Search form input that is not checked for 1 composition or 2 length, which has unknown impact, possibly related to "search form hijacking"...
CVE-2007-1182
WebAPP before 0.9.9.5 allows remote Guest users to edit a Guest profile, which has unknown impact...
PT-2005-2605 · Webapp · Webapp
Name of the Vulnerable Software and Affected Versions: WebAPP versions 0.9.9.2.1 and earlier Description: The issue allows remote attackers to execute arbitrary commands via shell metacharacters in the f parameter of the apage.cgi page. Recommendations: For WebAPP versions 0.9.9.2.1 and earlier,...
CVE-2005-0927
Unknown vulnerability in subs.pl for WebAPP 0.9.9 through 0.9.9.2 has unknown impact and attack vectors, probably involving shell metacharacters or .. sequences...