Lucene search
K

10 matches found

CVE
CVE
added 2020/01/29 5:21 p.m.153 views

CVE-2013-3215

CVE-2013-3215 affects vtiger CRM 5.4.0 and earlier. Root cause: authentication bypass due to improper validation in validateSession. CVSS v3.1 base score 9.8 (CRITICAL; NETWORK, LOW attack complexity, PR:N; privileges NONE; UI:N; C/H/I/H/A/H). Public details in NVD/CVE records indicate high-risk ...

9.8CVSS9.3AI score0.68849EPSS
Exploits8References2Affected Software1
Cvelist
Cvelist
added 2020/01/29 5:21 p.m.24 views

CVE-2013-3215

vtiger CRM 5.4.0 and earlier contain an Authentication Bypass Vulnerability due to improper authentication validation in the validateSession function...

9.6AI score0.68849EPSS
Exploits8References2
Circl
Circl
added 2018/05/29 3:50 p.m.10 views

CVE-2013-3215

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/vtigersoapupload.rb 2025-02-06 03:13:41+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:16+00:00| seen|...

9.8CVSS9.3AI score0.68849EPSS
Exploits8References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

vTiger CRM SOAP AddEmailAttachment - Arbitrary File Upload

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include REXML include...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/02/17 12:0 a.m.50 views

vTiger CRM SOAP AddEmailAttachment Arbitrary File Upload (CVE-2013-3215)

A remote code execution vulnerability has been reported in VTiger CRM.The vulnerability is due to lack of validation of file types uploaded to the server throught the AddEmailAttachment SOAP service. A remote attacker can exploit this vulnerability to access the script remotely and have it run th...

2.4AI score0.68849EPSS
Exploits8
0day.today
0day.today
added 2014/01/07 12:0 a.m.77 views

vTiger CRM SOAP AddEmailAttachment Arbitrary File Upload Vulnerability

vTiger CRM allows an user to bypass authentication when requesting SOAP services. In addition, arbitrary file upload is possible through the AddEmailAttachment SOAP service. By combining both vulnerabilities an attacker can upload and execute PHP code. This Metasploit module has been tested...

0.4AI score0.84535EPSS
Exploits13
Packet Storm
Packet Storm
added 2014/01/07 12:0 a.m.38 views

vTiger CRM SOAP AddEmailAttachment Arbitrary File Upload

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class Metasploit3 'vTiger CRM SOAP AddEmailAttachment Arbitrary File Upload', 'Description' = %q vTiger CRM allows an user to...

0.2AI score0.84535EPSS
Exploits13
Exploit DB
Exploit DB
added 2014/01/07 12:0 a.m.140 views

vTiger CRM 5.4.0 SOAP - AddEmailAttachment Arbitrary File Upload (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class Metasploit3 'vTiger CRM SOAP AddEmailAttachment Arbitrary File Upload', 'Description' = %q vTiger CRM allows an user to...

7.4AI score
Exploits0
Metasploit
Metasploit
added 2014/01/02 5:25 p.m.34 views

vTiger CRM SOAP AddEmailAttachment Arbitrary File Upload

vTiger CRM allows a user to bypass authentication when requesting SOAP services. In addition, arbitrary file upload is possible through the AddEmailAttachment SOAP service. By combining both vulnerabilities an attacker can upload and execute PHP code. This module has been tested successfully on...

9.8CVSS7.8AI score0.84535EPSS
Exploits13
securityvulns
securityvulns
added 2013/09/09 12:0 a.m.74 views

[KIS-2013-08] vtiger CRM <= 5.4.0 (SOAP Services) Authentication Bypass Vulnerability

----------------------------------------------------------------------- vtiger CRM = 5.4.0 SOAP Services Authentication Bypass Vulnerability ----------------------------------------------------------------------- - Software Link: http://www.vtiger.com/ - Affected Versions: All versions from 5.1.0...

0.2AI score0.68849EPSS
Exploits8
Rows per page
Query Builder