HP SiteScope SOAP Call LoadFileContent Remote File Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP SiteScope SOAP Call loadFileContent Remote File Access', 'Description' = %q This module exploits an authentication bypass vulnerability in HP...

ViewGit 0.0.6 - Multiple XSS Vulnerabilities

No description provided by source. Vulnerability Report Author: Matthew R. Bucci [email protected] Date: 18 March, 2013 CVE-2013-2294 Description of Vulnerability: ----------------------------- ViewGit is a git web repository viewer that aims to be easy to set up and upgrade, light on...

NConf 1.3 (detail.php detail_admin_items.php, id parameter) SQL Injection

No description provided by source. Exploit Title: nconf detail.php?detailadminitems.php blind injection Date: 2013/1/20 Exploit Author: [email protected] Software Link: http://sourceforge.net/projects/nconf/files/nconf/ Version: nconf 1.3 Tested on: Server: Apache/2.2.15 Centos PHP/5.3.3 ...

HP SiteScope Remote Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

rpcbind (CALLIT Procedure) UDP Crash PoC

No description provided by source. !/usr/bin/ruby rpcbindudpcrashpoc.rb 07/15/2013 Sean Verity veritysr1980 at gmail.com CVE 2013-1950 rpcbind CALLIT Procedure UDP Crash PoC Affected Software Package: rpcbind-0.2.0-19 Tested on: Fedora 17 3.9.8-100.fc17.x8664 1 SMP CentOS 6.3 Final...

rpcbind CALLIT UDP Crash

!/usr/bin/ruby rpcbindudpcrashpoc.rb 07/15/2013 Sean Verity CVE 2013-1950 rpcbind CALLIT Procedure UDP Crash PoC Affected Software Package: rpcbind-0.2.0-19 Tested on: Fedora 17 3.9.8-100.fc17.x8664 1 SMP CentOS 6.3 Final 2.6.32-279.22.1.el6.x8664 1 SMP rpcbind can be crashed by setting the...

rpcbind (CALLIT Procedure) UDP Crash PoC

rpcbind CALLIT procedure UDP denial of service proof of concept exploit. !/usr/bin/ruby rpcbindudpcrashpoc.rb 07/15/2013 Sean Verity CVE 2013-1950 rpcbind CALLIT Procedure UDP Crash PoC Affected Software Package: rpcbind-0.2.0-19 Tested on: Fedora 17 3.9.8-100.fc17.x8664 1 SMP CentOS 6.3 Final...

rpcbind - CALLIT procedure UDP Crash (PoC)

rpcbind - CALLIT procedure UDP Crash PoC !/usr/bin/ruby rpcbindudpcrashpoc.rb 07/15/2013 Sean Verity CVE 2013-1950 rpcbind CALLIT Procedure UDP Crash PoC Affected Software Package: rpcbind-0.2.0-19 Tested on: Fedora 17 3.9.8-100.fc17.x8664 1 SMP CentOS 6.3 Final 2.6.32-279.22.1.el6.x8664 1 SMP...

HP SiteScope Remote Code Execution

This module exploits a code execution flaw in HP SiteScope. It exploits two vulnerabilities in order to get its objective. An authentication bypass in the create operation, available through the APIPreferenceImpl AXIS service, to create a new account with empty credentials and, subsequently, uses...