4 matches found
AlienVault Authenticated SQL Injection Arbitrary File Read
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "AlienVault Authenticated SQL Injection Arbitrary File Read", 'Description' = %q AlienVault 4.6.1 and below is susceptible to an authenticated SQL...
CVE-2014-5383
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/alienvaultnewpolicyformsqli.rb 2025-02-06 03:13:41+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:30+00:00| see...
CVE-2014-5383
CVE-2014-5383 concerns an SQL injection in AlienVault OSSIM. Connected data confirms the vulnerability affects AlienVault OSSIM 4.6.1 and earlier (pre-4.7.0), with an authenticated attacker able to execute arbitrary SQL via unspecified vectors. A Metasploit module documents exploitation against n...
CVE-2014-5383
SQL injection vulnerability in AlienVault OSSIM before 4.7.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...