Lucene search
K

29 matches found

Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.16 views

Oracle Siebel CRM 6.1.x / 6.1.1.x / 6.2.x (July 2015 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by a vulnerability as referenced in the July 2015 CPU advisory. - Vulnerability in the Siebel Apps - E-Billing component of Oracle Siebel CRM subcomponent: Security. Supported versions that are affected are 6.1, 6.1.1 and...

9.8CVSS8AI score0.99998EPSS
Exploits18References2
Openbugbounty
Openbugbounty
added 2023/10/10 4:43 p.m.11 views

sexmonster.org Cross Site Scripting vulnerability OBB-3740174

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/23 9:41 a.m.2 views

fyolifyoli.com Cross Site Scripting vulnerability OBB-3459300

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/18 5:9 a.m.17 views

letmewatchthis.123movies.online Cross Site Scripting vulnerability OBB-3440803

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2023/03/29 1:48 a.m.68 views

Security Bulletin: Unauthorized access exposure on IBM SAN Volume Controller and Storwize Family (CVE-2013-2251, CVE-2013-2248 CVE-2013-2135, CVE-2013-2134, CVE-2013-2115, CVE-2013-1966 and CVE-2013-1965)

Summary Security Bulletin: Unauthorized access exposure on IBM SAN Volume Controller and Storwize Family CVE-2013-2251 CVE-2013-2248 CVE-2013-2135 CVE-2013-2134 CVE-2013-2115 CVE-2013-1966 CVE-2013-1965 Vulnerability Details Security Bulletin --- Summary --- Administrative access to the system vi...

9.8CVSS9.1AI score0.99998EPSS
Exploits33
Tenable Nessus
Tenable Nessus
added 2020/11/05 12:0 a.m.105 views

Selligent Message Studio Struts Code Execution (CVE-2013-2251)

Binary data selligentmessagestudioCVE-2013-2251.nbin...

9.8CVSS9AI score0.99998EPSS
Exploits18References3
Packet Storm
Packet Storm
added 2020/10/20 12:0 a.m.1764 views

Apache Struts 2 Remote Code Execution

Exploit Title: Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution Google Dork: ext:action | filetype:action Date: 2020/09/09 Exploit Author: Jonatas Fil Vendor Homepage: http://struts.apache.org/release/2.3.x/docs/s2-016.html Version: = 2.3.15 Tested on: Linux CVE : CVE-2013-2251...

9.3CVSS0.1AI score0.99998EPSS
Exploits18
Exploit DB
Exploit DB
added 2020/10/20 12:0 a.m.877 views

Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution

Exploit Title: Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution Google Dork: ext:action | filetype:action Date: 2020/09/09 Exploit Author: Jonatas Fil Vendor Homepage: http://struts.apache.org/release/2.3.x/docs/s2-016.html Version: = 2.3.15 Tested on: Linux CVE : CVE-2013-2251...

9.8CVSS9AI score0.99998EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2018/09/10 12:0 a.m.145 views

Apache Struts 2.x < 2.3.15.1 Multiple Vulnerabilities (S2-016) (S2-017)

The version of Apache Struts running on the remote host is 2.x prior to 2.3.15.1. It, therefore, is affected by multiple vulnerabilities including a remote command execution vulnerability and an open redirect vulnerability. Note that Nessus has not tested for these issues but has instead relied...

9.8CVSS7.8AI score0.99998EPSS
Exploits20References4
Kitploit
Kitploit
added 2018/08/26 9:14 p.m.1153 views

Apache Struts v3 - Tool To Exploit 3 RCE Vulnerabilities On ApacheStruts

Script contains the fusion of 3 RCE vulnerabilities on ApacheStruts, it also has the ability to create server shells. SHELL php finished jsp process CVE ADD CVE-2013-2251 'action:', 'redirect:' and 'redirectAction' CVE-2017-5638 Content-Type CVE-2018-11776 'redirect:' and 'redirectAction' Downloa...

9.8CVSS10AI score0.99999EPSS
Exploits100References1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 7:37 p.m.48 views

Security Bulletin:Sterling Web Channel is affected by Apache Struts 2 security vulnerabilities (CVE-2013-4310, CVE-2013-4316, CVE-2013-2251, CVE-2013-2248, CVE-2013-2135, CVE-2013-2134, CVE-2013-2115, CVE-2013-1966, CVE-2013-1965)

Summary IBM Sterling Web Channel use Apache Struts 2 and is affected by some of the vulnerabilities that exist in Apache Struts 2. Vulnerability Details CVEID: CVE-2013-4310 Description: Apache Struts could allow a remote attacker to bypass security restrictions, caused by an error in the action:...

10CVSS1.1AI score0.99998EPSS
Exploits35Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/05/08 12:0 a.m.59 views

MySQL Enterprise Monitor < 2.3.14 Apache Struts Multiple Vulnerabilities

According to its self-reported version, the MySQL Enterprise Monitor running on the remote host is affected by the multiple vulnerabilities in the bundled version of Apache Struts : - Input validation errors exist that allows the execution of arbitrary Object-Graph Navigation Language OGNL...

10CVSS7.2AI score0.99998EPSS
Exploits19References6
securityvulns
securityvulns
added 2014/06/14 12:0 a.m.215 views

[SECURITY] CVE-2013-2251: Apache Continuum affected by Remote Command Execution

CVE-2013-2251: Apache Continuum affected by Remote Command Execution Severity: Important Vendor: The Apache Software Foundation Versions Affected: - Continuum 1.3.1 to Continuum 1.4.1 Description: Apache Continuum is affected by a vulnerability in the version of the Struts library being used, whi...

9.3CVSS2.1AI score0.99998EPSS
Exploits18
securityvulns
securityvulns
added 2014/05/04 12:0 a.m.219 views

[SECURITY] CVE-2013-2251: Apache Archiva Remote Command Execution

CVE-2013-2251: Apache Archiva Remote Command Execution Severity: Important Vendor: The Apache Software Foundation Versions Affected: - Archiva 1.3 to Continuum 1.3.6 - The unsupported versions Archiva 1.2 to 1.2.2 are also affected. Description: Apache Archiva is affected by a vulnerability in th...

9.3CVSS2AI score0.99998EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2014/04/29 12:0 a.m.66 views

Apache Archiva 1.2.x <= 1.2.2 / 1.3.x <= 1.3.6 Multiple Vulnerabilities

According to its self-reported version, the instance of Apache Archiva hosted on the remote web server is 1.2.x prior than or equal to 1.2.2 or 1.3.x prior than or equal to 1.3.6 and thus is affected by the following vulnerabilities : - An input validation error exists related to unspecified...

9.8CVSS7.5AI score0.99998EPSS
Exploits18References4
F5 Networks
F5 Networks
added 2014/01/20 12:0 a.m.446 views

SOL14933 - Apache Struts vulnerability CVE-2013-2251

Recommended action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL15260: Apache Struts vulnerability...

9.8CVSS3.4AI score0.99998EPSS
Exploits25References6
Exploit DB
Exploit DB
added 2014/01/14 12:0 a.m.74 views

Apache Struts2 2.0.0 &lt; 2.3.15 - Prefixed Parameters OGNL Injection

CVE Number: CVE-2013-2251 Title: Struts2 Prefixed Parameters OGNL Injection Vulnerability Affected Software: Apache Struts v2.0.0 - 2.3.15 Credit: Takeshi Terada of Mitsui Bussan Secure Directions, Inc. Issue Status: v2.3.15.1 was released which fixes this vulnerability Issue ID by Vender: S2-016...

9.8CVSS9AI score0.99998EPSS
Exploits18
Packet Storm
Packet Storm
added 2013/08/13 12:0 a.m.92 views

Struts2 2.3.15 OGNL Injection

CVE Number: CVE-2013-2251 Title: Struts2 Prefixed Parameters OGNL Injection Vulnerability Affected Software: Apache Struts v2.0.0 - 2.3.15 Credit: Takeshi Terada of Mitsui Bussan Secure Directions, Inc. Issue Status: v2.3.15.1 was released which fixes this vulnerability Issue ID by Vender: S2-016...

9.3CVSS9AI score0.99998EPSS
Exploits20
Saint
Saint
added 2013/08/01 12:0 a.m.70 views

Apache Struts DefaultActionMapper redirect Prefix Vulnerability

Added: 08/01/2013 CVE: CVE-2013-2251 BID: 61189 OSVDB: 95405 Background Apache Struts is an open-source web application framework for developing Java EE web applications. It uses and extends the Java Servlet API to encourage developers to adopt a model-view-controller MVC architecture. Struts use...

9.3CVSS9.1AI score0.99998EPSS
Exploits18
Huawei
Huawei
added 2013/07/30 12:0 a.m.124 views

Security Advisory-Multiple Apache Struts2 Vulnerabilities in Huawei Products

Apache Struts2 is a second-generation and enterprise-ready Java web application framework based on the Model-View-Controller MVC architecture. This advisory describes four vulnerabilities of Apache Struts 2.0.0 - 2.3.15. Huawei products and applications using the above versions of Apache Struts a...

9.8CVSS9.3AI score0.99998EPSS
Exploits32Affected Software26
Rows per page
Query Builder