Lucene search
K

6 matches found

CVE
CVE
added 2020/02/07 4:4 p.m.90 views

CVE-2014-5468

CVE-2014-5468 is a Railo Remote File Include vulnerability affecting Railo 4.2.1 and earlier. A specially crafted request to thumbnail.cfm can cause the server to include a malicious PNG, enabling an attacker to download arbitrary PNGs and, via directory traversal, append ColdFusion markup to the...

8.8CVSS8.6AI score0.52563EPSS
Exploits6References5Affected Software1
Check Point Advisories
Check Point Advisories
added 2016/10/09 12:0 a.m.11 views

Railo Remote File Include (CVE-2014-5468)

This module exploits a remote file include vulnerability in Railo. A vulnerability in thumbnail.cfm allows an attacker to download an arbitrary PNG file, and by taking advantage of a directory traversal, an attacker can append cold fusion markup to the PNG file, and have it interpreted by the...

6.8CVSS5.7AI score0.52563EPSS
Exploits6
seebug.org
seebug.org
added 2014/09/18 12:0 a.m.36 views

Railo Remote File Include

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient include...

7.1AI score0.52563EPSS
Exploits6
Circl
Circl
added 2014/09/15 12:0 a.m.9 views

CVE-2014-5468

creationtimestamp| type| source ---|---|--- 2014-09-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/34669 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/railocfmlrfi.rb 2025-02-06 03:13:41+00:00| seen|...

8.8CVSS7.3AI score0.52563EPSS
Exploits6References2
Exploit DB
Exploit DB
added 2014/09/15 12:0 a.m.51 views

Railo 4.2.1 - Remote File Inclusion (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Railo Remote File Include', 'Description' = ' This module exploits a remote file include vulnerability in Railo, tested against versi...

8.8CVSS7.4AI score0.52563EPSS
Exploits6
Packet Storm
Packet Storm
added 2014/09/12 12:0 a.m.49 views

Railo 4.2.1 Remote File Inclusion

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Railo Remote File Include', 'Description' = ' This module exploits a remote file include vulnerability in Railo, tested against versi...

0.2AI score0.52563EPSS
Exploits6
Rows per page
Query Builder