CVE-2018-20578

An issue was discovered in NuttX before 7.27. The function netlibparsehttpurl in apps/netutils/netlib/netlibparsehttpurl.c mishandles URLs longer than hostlen bytes in the webclient, this is set by default to 40, leading to an Infinite Loop. The attack vector is the Location header of an HTTP 3xx...

VideoInsight WebClient 5 SQL Injection

Title: VideoInsight WebClient 5 - SQL Injection Date: 2018-05-06 Author: vosec Vendor Homepage: https://www.security.us.panasonic.com/ Software Link: https://www.security.us.panasonic.com/video-management-software/web-client/ Version: 5 Tested on: Windows Server 2008 R2 CVE: N/A Description: This...

VideoInsight WebClient 5 - SQL Injection

Title: VideoInsight WebClient 5 - SQL Injection Date: 2018-05-06 Author: vosec Vendor Homepage: https://www.security.us.panasonic.com/ Software Link: https://www.security.us.panasonic.com/video-management-software/web-client/ Version: 5 Tested on: Windows Server 2008 R2 CVE: N/A Description: This...

CVE-2018-2364

The CVE-2018-2364 entry affects SAP CRM WebClient UI versions 7.01, 7.31, 7.46, 7.47, 7.48, 8.00, 8.01 and S4FND 1.02. The root cause is insufficient validation/encoding of hidden fields, leading to Cross-Site Scripting (XSS). The connected documents confirm the existence of the vulnerability but...

WebDavC2 - A WebDAV C2 Tool

WebDavC2 is a PoC of using the WebDAV protocol with PROPFIND only requests to serve as a C2 communication channel between an agent, running on the target system, and a controller acting as the actuel C2 server. Architecture WebDavC2 is composed of: a controller, written in Python, which acts as t...

Microsoft Office - OLE Remote Code Execution

Microsoft Office - OLE Remote Code Execution Source: https://github.com/embedi/CVE-2017-11882 CVE-2017-11882: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ MITRE CVE-2017-11882: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11882 Research:...

Microsoft Office - OLE Remote Code Execution

Source: https://github.com/embedi/CVE-2017-11882 CVE-2017-11882: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ MITRE CVE-2017-11882: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11882 Research:...

Web Client SQL Injection Vulnerability

VideoInsightWebClient is a Web-based client from VideoInsight, Inc. A SQL injection vulnerability exists in VideoInsight Web Client versions 6.3.5.11 and earlier. An attacker can exploit this vulnerability to execute remote code...

CVE-2016-3507

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect integrity via vectors related to WebClient / Admin...

CVE-2016-3507

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect integrity via vectors related to WebClient / Admin...

CVE-2016-3507

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect integrity via vectors related to WebClient / Admin...

CVE-2016-3507

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect integrity via vectors related to WebClient / Admin...

PT-2016-5527 · Oracle · Oracle Agile Plm

Name of the Vulnerable Software and Affected Versions: Oracle Agile PLM versions 9.3.4 through 9.3.5 Description: The issue affects the integrity of the system, allowing remote attackers to exploit it via vectors related to WebClient / Admin. Recommendations: For versions 9.3.4 and 9.3.5, update ...

x86 Windows Null-Free Download & Run via WebDAV Shellcode 96 bytes

x86 Windows Null-Free Download & Run via WebDAV Shellcode 96 bytes. Shellcode exploit for win32 platform / Author: Sean Dillon Copyright: c 2016 RiskSense, Inc. https://risksense.com Release Date: March 1, 2016 Description: x86 Windows null-free download & run via WebDAV shellcode Assembled Size:...

HTTP HTML Title Tag Content Grabber

Generates a GET request to the provided webservers and returns the server header, HTML title attribute and location header if set. This is useful for rapidly identifying interesting web applications en mass. This module requires Metasploit: https://metasploit.com/download Current source:...

Oracle Fusion Middleware Security Service Information Disclosure (January 2015 CPU) (BEAST)

The version of Oracle HTTP Server installed on the remote host is affected by an information disclosure vulnerability, known as BEAST, in the SSL 3.0 and TLS 1.0 protocols due to a flaw in the way the initialization vector IV is selected when operating in cipher-block chaining CBC modes. A...

IBM System Director Agent DLL Injection

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

KeyHelp ActiveX LaunchTriPane Remote Code Execution Vulnerability

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

SAP NetWeaver HostControl Command Injection

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

Sun Java Web Start Double Quote Injection

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Sun Java Web Star...