54 matches found
EUVD-2013-6856
Malware in sbrugna...
EUVD-2012-6305
Malware in sbrugna...
EUVD-2012-4915
Malware in sbrugna...
CVE-2019-14277
Axway SecureTransport 5.x through 5.3 or 5.x through 5.5 with certain API configuration is vulnerable to unauthenticated blind XML injection and XXE in the resetPassword functionality via the REST API. This vulnerability can lead to local file disclosure, DoS, or URI invocation attacks i.e., SSRF...
CVE-2012-4991
Multiple directory traversal vulnerabilities in Axway SecureTransport 5.1 SP2 and earlier allow remote authenticated users to 1 read, 2 delete, or 3 create files, or 4 list directories, via a ..%5C encoded dot dot backslash in a URI...
CVE-2019-14277
Axway SecureTransport 5.x through 5.3 or 5.x through 5.5 with certain API configuration is vulnerable to unauthenticated blind XML injection and XXE in the resetPassword functionality via the REST API. This vulnerability can lead to local file disclosure, DoS, or URI invocation attacks i.e., SSRF...
CVE-2019-14277
Axway SecureTransport 5.x through 5.3 or 5.x through 5.5 with certain API configuration is vulnerable to unauthenticated blind XML injection and XXE in the resetPassword functionality via the REST API. This vulnerability can lead to local file disclosure, DoS, or URI invocation attacks i.e., SSRF...
Design/Logic Flaw
Axway SecureTransport 5.x through 5.3 or 5.x through 5.5 with certain API configuration is vulnerable to unauthenticated blind XML injection and XXE in the resetPassword functionality via the REST API. This vulnerability can lead to local file disclosure, DoS, or URI invocation attacks i.e., SSRF...
CVE-2019-14277
Axway SecureTransport 5.x through 5.3 or 5.x through 5.5 with certain API configuration is vulnerable to unauthenticated blind XML injection and XXE in the resetPassword functionality via the REST API. This vulnerability can lead to local file disclosure, DoS, or URI invocation attacks i.e., SSRF...
CVE-2019-14277
CVE-2019-14277 affects Axway SecureTransport 5.x (through 5.3; and 5.x through 5.5 with certain API configuration). The issue is unauthenticated blind XML injection (and XXE) in the REST API resetPassword function, with potential for local file disclosure, DoS, or URI invocation attacks (SSRF) th...
PT-2019-13579 · Axway · Axway Securetransport
Name of the Vulnerable Software and Affected Versions: Axway SecureTransport versions 5.x through 5.3 Axway SecureTransport versions 5.x through 5.5 with certain API configuration Description: The issue concerns unauthenticated blind XML injection and XXE in the resetPassword functionality via th...
Axway SecureTransport Code Issue Vulnerability
Axway SecureTransport is a suite of applications for the secure transfer of files and data from the French company Axway. Axway SecureTransport is vulnerable to a code issue. The vulnerability stems from an improperly designed or implemented code development process for a networked system or...
Axway SecureTransport 5 XML Injection
| | | | | / \ '/ \ | |/ | | / / / | | || | | | /|| |/|| https://zero.lol zero days 4 days ATTENTION: this is a friendly neighborhood zeroday drop Title: Axway SecureTransport 5 Unauthenticated XML Injection / XXE Google Dork: intitle:"Axway SecureTransport" "Login" Date: July 20th 2019 Author:...
Axway SecureTransport 5 - Unauthenticated XML Injection
Title: Axway SecureTransport 5 - Unauthenticated XML Injection Google Dork: intitle:"Axway SecureTransport" "Login" Date: 2019-07-20 Author: Dominik Penner / zer0pwn of Underdog Security Vendor Homepage: https://www.axway.com/en Software Link:...
Axway SecureTransport 5 - Unauthenticated XML Injection
Axway SecureTransport 5 - Unauthenticated XML Injection Title: Axway SecureTransport 5 - Unauthenticated XML Injection Google Dork: intitle:"Axway SecureTransport" "Login" Date: 2019-07-20 Author: Dominik Penner / zer0pwn of Underdog Security Vendor Homepage: https://www.axway.com/en Software Lin...
Axway SecureTransport 5 - Unauthenticated XML Injection Vulnerability
Exploit for linux platform in category web applications Title: Axway SecureTransport 5 - Unauthenticated XML Injection Google Dork: intitle:"Axway SecureTransport" "Login" Date: 2019-07-20 Author: Dominik Penner / zer0pwn of Underdog Security Vendor Homepage: https://www.axway.com/en Software Lin...
CVE-2015-5606
Vordel XML Gateway acquired by Axway version 7.2.2 could allow remote attackers to cause a denial of service via a specially crafted request...
Cross site request forgery (csrf)
Vordel XML Gateway acquired by Axway version 7.2.2 could allow remote attackers to cause a denial of service via a specially crafted request...
CVE-2015-5606
Vordel XML Gateway acquired by Axway version 7.2.2 could allow remote attackers to cause a denial of service via a specially crafted request...
CVE-2015-5606
CVE-2015-5606 affects Vordel XML Gateway (acquired by Axway) version 7.2.2. The vulnerability allows remote attackers to cause a denial of service via a specially crafted request. The available connected documents confirm the product and impact but do not provide exploit details, affected subcomp...