Lucene search
+L

9 matches found

Tenable Nessus
Tenable Nessus
added 2016/01/26 12:0 a.m.34 views

FreeBSD : privoxy -- malicious server spoofing as proxy vulnerability (ad82b0e9-c3d6-11e5-b5fe-002590263bf5)

Privoxy Developers reports : Proxy authentication headers are removed unless the new directive enable-proxy-authentication-forwarding is used. Forwarding the headers potentially allows malicious sites to trick the user into providing them with login information. Reported by Chris John Riley...

5.8CVSS7.2AI score0.04632EPSS
Exploits2References4
Exploit DB
Exploit DB
added 2013/05/14 12:0 a.m.31 views

SAP SOAP RFC - SXPG_COMMAND_EXECUTE Remote Command Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ This module is based on, inspired by, or is a port of a...

7.4AI score
Exploits0
Metasploit
Metasploit
added 2013/02/28 5:47 p.m.28 views

SAP ICF /sap/public/info Service Sensitive Information Gathering

This module uses the /sap/public/info service within SAP Internet Communication Framework ICF to obtain the operating system version, SAP version, IP address and other information. This module requires Metasploit: https://metasploit.com/download Current source:...

7.2AI score
Exploits0
Metasploit
Metasploit
added 2012/11/16 6:20 p.m.33 views

SAP /sap/bc/soap/rfc SOAP Service TH_SAPREL Function Information Disclosure

This module attempts to identify software, OS and DB versions through the SAP function THSAPREL using the /sap/bc/soap/rfc SOAP service. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This module is based on, inspire...

0.3AI score
Exploits0
Metasploit
Metasploit
added 2012/11/07 10:45 a.m.90 views

SAP SOAP Service RFC_PING Login Brute Forcer

This module attempts to brute force SAP username and passwords through the /sap/bc/soap/rfc SOAP service, using RFCPING function. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This module is based on, inspired by, o...

0.2AI score
Exploits0
Metasploit
Metasploit
added 2011/11/07 5:34 p.m.61 views

TYPO3 sa-2009-001 Weak Encryption Key File Disclosure

This module exploits a flaw in TYPO3 encryption ey creation process to allow for file disclosure in the jumpUrl mechanism. This flaw can be used to read any file that the web server user account has access to view. This module requires Metasploit: https://metasploit.com/download Current source:...

7.5CVSS7AI score0.09442EPSS
Exploits2
Metasploit
Metasploit
added 2011/03/02 10:18 a.m.36 views

SAP Management Console Version Detection

This module simply attempts to identify the version of SAP through the SAP Management Console SOAP Interface. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SAP Management Console Version...

7AI score
Exploits0
Metasploit
Metasploit
added 2011/03/02 10:18 a.m.28 views

SAP Management Console getStartProfile

This module simply attempts to access the SAP startup profile through the SAP Management Console SOAP Interface. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SAP Management Console...

0.3AI score
Exploits0
Typo3
Typo3
added 2010/04/14 12:0 a.m.17 views

Vulnerabilitiy in extension Frontend User Registration (sr_feuser_register)

It has been discovered that the extension Frontend User Registration srfeuserregister is susceptible to Cross Site Scripting XSS attacks. Component Type: Third party extension. This extensions is not part of the TYPO3 default installation. Affected Versions: Version 2.5.24 and all versions below...

6.7AI score
Exploits0Affected Software1
Rows per page
Query Builder