Lucene search
K

8 matches found

CVE
CVE
added 2014/12/04 5:0 p.m.90 views

CVE-2014-6034

CVE-2014-6034 affects ManageEngine OpManager (versions 8.8–11.3) and related products (Social IT Plus 11.0, IT360 10.4 and earlier). A directory traversal in the FileCollector servlet, triggered by a ".." in the regionID parameter, allows remote attackers or remote authenticated users to write to...

5CVSS6.8AI score0.79476EPSS
Exploits12References3Affected Software1
Exploit DB
Exploit DB
added 2014/11/09 12:0 a.m.67 views

ManageEngine OpManager / Social IT Plus / IT360 - Multiple Vulnerabilities

Multiple vulnerabilities in ManageEngine OpManager, Social IT Plus and IT360 Discovered by Pedro Ribeiro [email protected], Agile Information Security ========================================================================== Disclosure: 27/09/2014 1 and 2, 09/11/2014 3 and 4 / Last updated:...

7.5CVSS6.3AI score0.79759EPSS
Exploits23
exploitpack
exploitpack
added 2014/11/09 12:0 a.m.63 views

ManageEngine OpManager Social IT Plus IT360 - Multiple Vulnerabilities

ManageEngine OpManager Social IT Plus IT360 - Multiple Vulnerabilities Multiple vulnerabilities in ManageEngine OpManager, Social IT Plus and IT360 Discovered by Pedro Ribeiro [email protected], Agile Information Security ==========================================================================...

7.5CVSS6.5AI score0.79759EPSS
Exploits23
Exploit DB
Exploit DB
added 2014/10/02 12:0 a.m.35 views

ManageEngine OpManager / Social IT - Arbitrary File Upload (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'ManageEngine OpManager / Social IT Arbitrary File Upload', 'Description' = %q This module exploits a file upload vulnerability in...

5CVSS7.4AI score0.79476EPSS
Exploits12
exploitpack
exploitpack
added 2014/10/02 12:0 a.m.27 views

ManageEngine OpManager Social IT - Arbitrary File Upload (Metasploit)

ManageEngine OpManager Social IT - Arbitrary File Upload Metasploit This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'ManageEngine OpManager / Social IT Arbitrary File Upload',...

0.3AI score0.79476EPSS
Exploits12
Circl
Circl
added 2014/10/02 12:0 a.m.11 views

CVE-2014-6034

creationtimestamp| type| source ---|---|--- 2014-10-02 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/34867 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/opmanagersocialitfileupload.rb 2025-02-06...

5CVSS5.7AI score0.79476EPSS
Exploits12References2
Packet Storm
Packet Storm
added 2014/09/29 12:0 a.m.66 views

ManageEngine Code Execution / File Deletion

Hi, This is the fifth part of the ManageOwnage series. For previous parts, see: http://seclists.org/fulldisclosure/2014/Aug/55 http://seclists.org/fulldisclosure/2014/Aug/75 http://seclists.org/fulldisclosure/2014/Aug/88 http://seclists.org/fulldisclosure/2014/Sep/1 This time we have a file uploa...

7.5CVSS0.79476EPSS
Exploits15
Metasploit
Metasploit
added 2014/09/27 6:33 p.m.27 views

ManageEngine OpManager and Social IT Arbitrary File Upload

This module exploits a file upload vulnerability in ManageEngine OpManager and Social IT. The vulnerability exists in the FileCollector servlet which accepts unauthenticated file uploads. This module has been tested successfully on OpManager v8.8 - v11.3 and on version 11.0 of SocialIT for Window...

5CVSS7.2AI score0.79476EPSS
Exploits12
Rows per page
Query Builder