Lucene search
K

9 matches found

Check Point Advisories
Check Point Advisories
added 2013/12/11 12:0 a.m.31 views

Apache Roller OGNL Injection Remote Code Execution (CVE-2013-4212)

A command execution vulnerability exists in Apache Roller due to a lack of sanitization on OGNL expressions passed to certain methods. This can lead to OGNL injection which can result in remote code execution. A remote unauthenticated attacker could exploit this vulnerability by sending crafted...

6.8CVSS7.6AI score0.81068EPSS
Exploits7
d2
d2
added 2013/12/07 8:55 p.m.541 views

DSquare Exploit Pack: D2SEC_APACHE_ROLLER

Name| d2secapacheroller ---|--- CVE| CVE-2013-4212 Exploit Pack| D2ExploitPack Description| d2secapacheroller Notes|...

6.8CVSS1.7AI score0.81068EPSS
Exploits7
Cvelist
Cvelist
added 2013/12/07 8:0 p.m.31 views

CVE-2013-4212

Certain getText methods in the ActionSupport controller in Apache Roller before 5.0.2 allow remote attackers to execute arbitrary OGNL expressions via the first or second parameter, as demonstrated by the pageTitle parameter in the !getPageTitle sub-URL to roller-ui/login.rol, which uses a subcla...

7.2AI score0.81068EPSS
Exploits7References7
CVE
CVE
added 2013/12/07 8:0 p.m.95 views

CVE-2013-4212

Apache Roller

6.8CVSS7.4AI score0.81068EPSS
Exploits7References7Affected Software1
Circl
Circl
added 2013/11/27 12:0 a.m.19 views

CVE-2013-4212

creationtimestamp| type| source ---|---|--- 2013-11-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/29859 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/apacherollerognlinjection.rb 2025-02-06 03:13:41+00:0...

6.8CVSS5.7AI score0.81068EPSS
Exploits7References2
Exploit DB
Exploit DB
added 2013/11/27 12:0 a.m.37 views

Apache Roller - OGNL Injection (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Apache Roller OGNL Injection', 'Description' = %q This module exploits an OGNL injection vulnerability in Apache Roller 'Unknown', Fr...

6.8CVSS7.4AI score0.81068EPSS
Exploits7
0day.today
0day.today
added 2013/11/26 12:0 a.m.75 views

Apache Roller OGNL Injection Vulnerability

This Metasploit module exploits an OGNL injection vulnerability in Apache Roller 'Apache Roller OGNL Injection', 'Description' = %q This module exploits an OGNL injection vulnerability in Apache Roller 'Unknown', From coverity.com / Vulnerability discovery 'juan vazquez' Metasploit module ,...

6.8CVSS6.8AI score0.81068EPSS
Exploits7
Packet Storm
Packet Storm
added 2013/11/26 12:0 a.m.35 views

Apache Roller OGNL Injection

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Apache Roller OGNL Injection', 'Description' = %q This module exploits an OGNL injection vulnerability in Apache Roller 'Unknown', Fr...

6.8CVSS0.1AI score0.81068EPSS
Exploits7
Metasploit
Metasploit
added 2013/11/19 4:25 p.m.68 views

Apache Roller OGNL Injection

This module exploits an OGNL injection vulnerability in Apache Roller 'Apache Roller OGNL Injection', 'Description' = %q This module exploits an OGNL injection vulnerability in Apache Roller 'Unknown', From coverity.com / Vulnerability discovery 'juan vazquez' Metasploit module , 'License' =...

6.8CVSS7.3AI score0.81068EPSS
Exploits7
Rows per page
Query Builder