Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/21 7:49 p.m.9 views

CVE-2009-3693

Directory traversal vulnerability in the Persits.XUpload.2 ActiveX control XUpload.ocx in HP LoadRunner 9.5 allows remote attackers to create arbitrary files via \.. backwards slash dot dot sequences in the third argument to the MakeHttpRequest method...

9.3CVSS7AI score0.4158EPSS
Exploits9References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Persits XUpload ActiveX MakeHttpRequest Directory Traversal

No description provided by source. $Id: persitsxuploadtraversal.rb 10998 2010-11-11 22:43:22Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/12/31 12:0 a.m.48 views

Persits XUpload ActiveX MakeHttpRequest Directory Traversal

$Id: persitsxuploadtraversal.rb 7760 2009-12-08 21:24:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

9.3CVSS0.5AI score0.4158EPSS
Exploits9
Saint
Saint
added 2009/10/21 12:0 a.m.25 views

HP LoadRunner XUpload ActiveX control MakeHttpRequest file download

Added: 10/21/2009 CVE: CVE-2009-3693 BID: 36550 Background HP LoadRunner is a software performance testing solution. HP LoadRunner includes the XUpload.ocx ActiveX control for performing file exchanges. Problem The MakeHttpRequest method in the XUpload.ocx ActiveX control can be used to download...

9.3CVSS7AI score0.4158EPSS
Exploits9
Saint
Saint
added 2009/10/21 12:0 a.m.26 views

HP LoadRunner XUpload ActiveX control MakeHttpRequest file download

Added: 10/21/2009 CVE: CVE-2009-3693 BID: 36550 Background HP LoadRunner is a software performance testing solution. HP LoadRunner includes the XUpload.ocx ActiveX control for performing file exchanges. Problem The MakeHttpRequest method in the XUpload.ocx ActiveX control can be used to download...

9.3CVSS6.8AI score0.4158EPSS
Exploits9
Saint
Saint
added 2009/10/21 12:0 a.m.34 views

HP LoadRunner XUpload ActiveX control MakeHttpRequest file download

Added: 10/21/2009 CVE: CVE-2009-3693 BID: 36550 Background HP LoadRunner is a software performance testing solution. HP LoadRunner includes the XUpload.ocx ActiveX control for performing file exchanges. Problem The MakeHttpRequest method in the XUpload.ocx ActiveX control can be used to download...

9.3CVSS6.9AI score0.4158EPSS
Exploits9
NVD
NVD
added 2009/10/13 10:30 a.m.33 views

CVE-2009-3693

Directory traversal vulnerability in the Persits.XUpload.2 ActiveX control XUpload.ocx in HP LoadRunner 9.5 allows remote attackers to create arbitrary files via .. backwards slash dot dot sequences in the third argument to the MakeHttpRequest method...

9.3CVSS6.7AI score0.4158EPSS
Exploits9References2
CVE
CVE
added 2009/10/13 10:0 a.m.62 views

CVE-2009-3693

CVE-2009-3693 involves a directory traversal in Persits.XUpload.2 ActiveX control (XUpload.ocx) shipped with HP LoadRunner 9.5. The flaw arises in the MakeHttpRequest method, where sequences like "..\" can cause arbitrary files to be created on the target. Public details describe this as a write-...

9.3CVSS6.6AI score0.4158EPSS
Exploits9References2Affected Software2
Circl
Circl
added 2009/09/29 12:0 a.m.11 views

CVE-2009-3693

creationtimestamp| type| source ---|---|--- 2009-09-29 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/9806 2010-11-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16598 2018-05-29 15:50:33+00:00| seen|...

9.3CVSS5.7AI score0.4158EPSS
Exploits9References3
Rows per page
Query Builder