5 matches found
Oracle Demantra Database Credentials Leak
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle Demantra Database Credentials Leak', 'Description' = %q This module exploits a database credentials leak found in Oracle Demantra 12.2.1 i...
Oracle Demantra Database Credentials Leak
This module exploits a database credentials leak found in Oracle Demantra 12.2.1 in combination with an authentication bypass. This way an unauthenticated user can retrieve the database name, username and password on any vulnerable machine. This module requires Metasploit:...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-5795. Reason: This candidate is a duplicate of CVE-2013-5795. A typo caused the wrong ID to be used. Notes: All CVE users should reference CVE-2013-5795 instead of this candidate. All references and descriptions in this...
CVE-2013-5795
creationtimestamp| type| source ---|---|--- 2014-03-01 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31995 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/oracledemantradatabasecredentialsleak.rb 2025-02-0...
CVE-2013-5795
Oracle Demantra has a backend Database Credentials Leak vulnerability (CVE-2013-5795) affecting Demantra Demand Management within Oracle Supply Chain Products Suite (versions including 12.2.1, 12.2.2, 12.2.3 and related 7.x/SQL-Server lines). The issue enables an attacker to retrieve database ins...