Lucene search
K

11 matches found

Check Point Advisories
Check Point Advisories
added 2021/04/21 12:0 a.m.7 views

Ipswitch WhatsUp Gold SQL Injection (CVE-2015-8261)

An SQL injection vulnerability exists in Ipswitch WhatsUp Gold. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS4.7AI score0.0355EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2016/01/22 12:0 a.m.48 views

Ipswitch WhatsUp Gold < 16.4 Multiple Vulnerabilities

The remote host has a version of Ipswitch WhatsUp Gold installed that is prior to 16.4.0. It is, therefore, affected by the following vulnerabilities : - Multiple SQL injection vulnerabilities exist due to improper sanitization of user-supplied input to the 'sUniqueID' parameter and the 'find...

9.8CVSS7.4AI score0.0355EPSS
Exploits6References4
Packet Storm
Packet Storm
added 2016/01/15 12:0 a.m.40 views

WhatsUp Gold 16.3 Remote Code Execution

Exploit Title: WhatsUp Gold v16.3 Unauthenticated Remote Code Execution Date: 2016-01-13 Exploit Author: Matt Buzanowski Vendor Homepage: http://www.ipswitch.com/ Version: 16.3.x Tested on: Windows 7 x86 CVE : CVE-2015-8261 Usage: python DroneDeleteOldMeasurements.py import requests import sys...

7.5CVSS0.3AI score0.0355EPSS
Exploits4
Exploit DB
Exploit DB
added 2016/01/13 12:0 a.m.53 views

WhatsUp Gold 16.3 - Remote Code Execution

Exploit Title: WhatsUp Gold v16.3 Unauthenticated Remote Code Execution Date: 2016-01-13 Exploit Author: Matt Buzanowski Vendor Homepage: http://www.ipswitch.com/ Version: 16.3.x Tested on: Windows 7 x86 CVE : CVE-2015-8261 Usage: python DroneDeleteOldMeasurements.py import requests import sys...

9.8CVSS9.8AI score0.0355EPSS
Exploits4
exploitpack
exploitpack
added 2016/01/13 12:0 a.m.36 views

WhatsUp Gold 16.3 - Remote Code Execution

WhatsUp Gold 16.3 - Remote Code Execution Exploit Title: WhatsUp Gold v16.3 Unauthenticated Remote Code Execution Date: 2016-01-13 Exploit Author: Matt Buzanowski Vendor Homepage: http://www.ipswitch.com/ Version: 16.3.x Tested on: Windows 7 x86 CVE : CVE-2015-8261 Usage: python...

7.5CVSS0.3AI score0.0355EPSS
Exploits4
0day.today
0day.today
added 2016/01/13 12:0 a.m.51 views

WhatsUp Gold 16.3 - Unauthenticated Remote Code Execution

Exploit for asp platform in category web applications Exploit Title: WhatsUp Gold v16.3 Unauthenticated Remote Code Execution Date: 2016-01-13 Exploit Author: Matt Buzanowski Vendor Homepage: http://www.ipswitch.com/ Version: 16.3.x Tested on: Windows 7 x86 CVE : CVE-2015-8261 Usage: python...

7.5CVSS0.6AI score0.0355EPSS
Exploits4
myhack58
myhack58
added 2016/01/10 12:0 a.m.18 views

Ipswitch WhatsUp Gold SQL injection Vulnerability(CVE-2 0 1 5-8 2 6 1)-vulnerability warning-the black bar safety net

Affected system: Ipswitch WhatsUp Gold 〈 16.4 Description: CVECAN ID: CVE-2 0 1 5-8 2 6 1 WhatsUp Gold offers a complete easy-to-use monitoring mechanism for comprehensive monitoring of application services and network equipment, and assist IT managers the network management information into a...

0.7AI score
Exploits0
NVD
NVD
added 2016/01/08 2:59 a.m.23 views

CVE-2015-8261

The DroneDeleteOldMeasurements implementation in Ipswitch WhatsUp Gold before 16.4 does not properly validate serialized XML objects, which allows remote attackers to conduct SQL injection attacks via a crafted SOAP request...

9.8CVSS9.6AI score0.0355EPSS
Exploits4References3
CVE
CVE
added 2016/01/08 2:0 a.m.73 views

CVE-2015-8261

Ipswitch WhatsUp Gold before 16.4 is vulnerable to SQL injection via the DroneDeleteOldMeasurements SOAP handler, caused by improper validation of serialized XML objects. A remote attacker can craft a SOAP request to inject/manipulate SQL in the back-end database, potentially exposing or altering...

9.8CVSS9.5AI score0.0355EPSS
Exploits4References3Affected Software1
Cvelist
Cvelist
added 2016/01/08 2:0 a.m.30 views

CVE-2015-8261

The DroneDeleteOldMeasurements implementation in Ipswitch WhatsUp Gold before 16.4 does not properly validate serialized XML objects, which allows remote attackers to conduct SQL injection attacks via a crafted SOAP request...

9.6AI score0.0355EPSS
Exploits4References3
CERT
CERT
added 2016/01/07 12:0 a.m.38 views

IPSwitch WhatsUp Gold does not validate commands when deserializing XML objects

Overview IPSwitch WhatsUp Gold version 16.3 does not properly validate data when deserializing XML objects sent over SOAP requests. Description CWE-502: Deserialization of Untrusted Data - CVE-2015-8261 WhatsUp Gold version 16.3 contains a SOAP request handler named DroneDeleteOldMeasurements...

9.8CVSS9.8AI score0.0355EPSS
Exploits4
Rows per page
Query Builder