Lucene search
K

15 matches found

0day.today
0day.today
added 2017/03/07 12:0 a.m.47 views

Alienvault OSSIM/USM 5.3.0 Authentication Bypass Exploit

Exploit for php platform in category web applications Details ======= Product: Alienvault OSSIM/USM Vulnerability: Authentication Bypass Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-7955 Vulnerable Versions: =5.3.0 Fixed Version: 5.3.1 Vulnerability Details ===================== This...

7.1AI score0.06407EPSS
Exploits2
Packet Storm
Packet Storm
added 2017/03/07 12:0 a.m.50 views

Alienvault OSSIM / USM 5.3.0 Authentication Bypass

Details ======= Product: Alienvault OSSIM/USM Vulnerability: Authentication Bypass Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-7955 Vulnerable Versions: =5.3.0 Fixed Version: 5.3.1 Vulnerability Details ===================== This vulnerability allows remote attackers to bypass...

0.8AI score0.06407EPSS
Exploits2
Packet Storm
Packet Storm
added 2016/11/02 12:0 a.m.42 views

Alienvault OSSIM/USM 5.3.1 Cross Site Scripting

Details ======= Product: Alienvault OSSIM/USM Vulnerability: Reflected XSS Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8583 Vulnerable Versions: body+onpageshow%3d"alert0 For the targets param the payload is slightly different. Timeline ======== 08/03/16 - Reported to Vendor 10/03/16 -...

4.3CVSS0.2AI score0.00641EPSS
Exploits1
exploitpack
exploitpack
added 2016/11/02 12:0 a.m.37 views

Alienvault OSSIMUSM 5.3.1 - Persistent Cross-Site Scripting

Alienvault OSSIMUSM 5.3.1 - Persistent Cross-Site Scripting Details ======= Product: Alienvault OSSIM/USM Vulnerability: Stored XSS Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8581 CVSS: 3.5 Vulnerable Versions: Current Sessions. POC === The POC uses jQuery to send all session IDs on the...

4.3CVSS0.2AI score0.17058EPSS
Exploits5
Packet Storm
Packet Storm
added 2016/11/02 12:0 a.m.43 views

Alienvault OSSIM/USM 5.3.1 SQL Injection

Details ======= Product: Alienvault OSSIM/USM Vulnerability: SQL Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8582 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A SQL injection vulnerability exists in the value parameter of...

7.5CVSS0.5AI score0.57425EPSS
Exploits5
0day.today
0day.today
added 2016/11/02 12:0 a.m.60 views

Alienvault OSSIM/USM 5.3.1 - SQL Injection Vulnerability

Exploit for php platform in category web applications Details ======= Product: Alienvault OSSIM/USM Vulnerability: SQL Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8582 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A SQL injection...

7.1AI score0.57425EPSS
Exploits5
0day.today
0day.today
added 2016/11/02 12:0 a.m.53 views

Alienvault OSSIM/USM 5.3.1 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Details ======= Product: Alienvault OSSIM/USM Vulnerability: Stored XSS Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8581 CVSS: 3.5 Vulnerable Versions: Current Sessions. POC === The POC uses jQuery to send all session IDs on the "Curre...

4.3CVSS6.4AI score0.17058EPSS
Exploits5
exploitpack
exploitpack
added 2016/11/02 12:0 a.m.45 views

Alienvault OSSIMUSM 5.3.1 - PHP Object Injection

Alienvault OSSIMUSM 5.3.1 - PHP Object Injection Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP object...

7.5CVSS0.5AI score0.06861EPSS
Exploits4
exploitpack
exploitpack
added 2016/11/02 12:0 a.m.32 views

Alienvault OSSIMUSM 5.3.1 - SQL Injection

Alienvault OSSIMUSM 5.3.1 - SQL Injection Details ======= Product: Alienvault OSSIM/USM Vulnerability: SQL Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8582 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A SQL injection vulnerability...

7.5CVSS0.7AI score0.57425EPSS
Exploits5
Packet Storm
Packet Storm
added 2016/11/02 12:0 a.m.37 views

Alienvault OSSIM/USM 5.3.1 PHP Object Injection

Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP object injection vulnerability exists in multiple widget...

7.5CVSS0.2AI score0.06861EPSS
Exploits4
Exploit DB
Exploit DB
added 2016/11/02 12:0 a.m.36 views

Alienvault OSSIM/USM 5.3.1 - Persistent Cross-Site Scripting

Details ======= Product: Alienvault OSSIM/USM Vulnerability: Stored XSS Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8581 CVSS: 3.5 Vulnerable Versions: Current Sessions. POC === The POC uses jQuery to send all session IDs on the "Current Sessions" page to an arbitrary site Google, in this...

6.1CVSS6.5AI score0.17058EPSS
Exploits5
0day.today
0day.today
added 2016/11/02 12:0 a.m.56 views

Alienvault OSSIM/USM 5.3.1 - PHP Object Injection Vulnerability

Exploit for php platform in category web applications Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP objec...

7.5CVSS9.2AI score0.06861EPSS
Exploits4
Exploit DB
Exploit DB
added 2016/11/02 12:0 a.m.35 views

Alienvault OSSIM/USM 5.3.1 - SQL Injection

Details ======= Product: Alienvault OSSIM/USM Vulnerability: SQL Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8582 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A SQL injection vulnerability exists in the value parameter of...

9.8CVSS7AI score0.57425EPSS
Exploits5
Exploit DB
Exploit DB
added 2016/11/02 12:0 a.m.36 views

Alienvault OSSIM/USM 5.3.1 - PHP Object Injection

Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP object injection vulnerability exists in multiple widget...

9.8CVSS9.8AI score0.06861EPSS
Exploits4
exploitpack
exploitpack
added 2015/05/08 12:0 a.m.17 views

Alienvault OSSIMUSM 4.144.155.0 - Multiple Vulnerabilities

Alienvault OSSIMUSM 4.144.155.0 - Multiple Vulnerabilities Details ======= Product: Alienvault OSSIM/USM Vulnerability: Multiple Vulnerabilities XSS, SQLi, Command Execution Author: Peter Lapp, [email protected] CVE: None assigned Vulnerable Versions: Tested on 4.14, 4.15, and 5.0. It likely...

0.5AI score
Exploits0
Rows per page
Query Builder