Lucene search
K

5 matches found

exploitpack
exploitpack
added 2019/09/16 12:0 a.m.43 views

Symantec Advanced Secure Gateway (ASG) ProxySG - Unrestricted File Upload

Symantec Advanced Secure Gateway ASG ProxySG - Unrestricted File Upload ===========Security Intelligence============ Vendor Homepage: adobe.com Version: 2018 Tested on: Adobe ColdFusion 2018 Exploit Author: Pankaj Kumar Thakur Nepal ==========Table of Contents============== Overview Detailed...

8.5CVSS0.16561EPSS
Exploits7
0day.today
0day.today
added 2018/07/31 12:0 a.m.125 views

Vtiger CRM 6.3.0 Authenticated Logo Upload Remote Command Execution Exploit

Vtiger version 6.3.0 CRM's administration interface allows for the upload of a company logo. Instead of uploading an image, an attacker may choose to upload a file containing PHP code and run this code by accessing the resulting PHP file. This Metasploit module was tested against vTiger CRM versi...

8.5CVSS0.5AI score0.40241EPSS
Exploits15
Circl
Circl
added 2018/07/30 5:42 p.m.12 views

CVE-2016-1713

creationtimestamp| type| source ---|---|--- 2018-07-30 17:42:41+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/vtigerlogouploadexec.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:46+00:00| seen|...

8.5CVSS7.4AI score0.16561EPSS
Exploits7References1
Metasploit
Metasploit
added 2018/07/17 11:28 p.m.45 views

Vtiger CRM - Authenticated Logo Upload RCE

Vtiger 6.3.0 CRM's administration interface allows for the upload of a company logo. Instead of uploading an image, an attacker may choose to upload a file containing PHP code and run this code by accessing the resulting PHP file. This module was tested against vTiger CRM v6.3.0. This module...

8.8CVSS7.8AI score0.40241EPSS
Exploits12
CVE
CVE
added 2017/04/14 6:0 p.m.91 views

CVE-2016-1713

CVE-2016-1713 concerns Vtiger CRM 6.4.0 where an unrestricted file upload in Settings_Vtiger_CompanyDetailsSave_Action (modules/Settings/Vtiger/actions/CompanyDetailsSave.php) lets a remote authenticated user upload a crafted image with an executable extension and access it via test/logo/ to exec...

8.5CVSS7.7AI score0.16561EPSS
Exploits7References4Affected Software1
Rows per page
Query Builder