5 matches found
Oracle Event Processing FileUploadServlet Arbitrary File Upload
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient include...
CVE-2014-2424
creationtimestamp| type| source ---|---|--- 2014-07-07 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/33989 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/oracleeventprocessingupload.rb 2025-02-06...
Oracle Event Processing FileUploadServlet Arbitrary File Upload
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Oracle Event Processing FileUploadServlet Arbitrary File Upload', 'Description' = %q This module exploits an Arbitrary File Upload...
Oracle Event Processing CVE-2014-2424 Unspecified Vulnerability (April 2014 CPU)
Binary data oraclecepcve20142424.nbin...
CVE-2014-2424
CVE-2014-2424 affects the Oracle Event Processing component of Oracle Fusion Middleware 11.1.1.7.0. The vulnerability resides in the FileUploadServlet, described as a directory traversal flaw that allows an arbitrary file upload, enabling a remote attacker to place files on the server. The CVE no...