Lucene search
K

17 matches found

Nuclei
Nuclei
added 2026/06/16 7:13 a.m.101 views

Apache ActiveMQ Fileserver - Arbitrary File Write

Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request via the Fileserver web application. id: CVE-2016-3088 info: name: Apache ActiveMQ Fileserver - Arbitrary File Write author: fqhsu severity: critical...

9.8CVSS8.8AI score0.98518EPSS
Exploits19References5
vulnersOsv
vulnersOsv
added 2022/05/14 1:14 a.m.4 views

at.chrl:chrl-jms (=1.1.0), at.researchstudio.sat:won-core (>=0.2 <=0.9) +499 more potentially affected by CVE-2016-3088 via org.apache.activemq:activemq-client (>=5.10.0 <=5.13.5)

org.apache.activemq:activemq-client MAVEN version =5.10.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.6 - at.researchstudio.sat:won-owner =0.3 - at.researchstudio.sat:won-owner-webapp =0.3 and more Source cves: CVE-2016-3088 Source advisory: OSV:GHSA-RXQH-FC23-GXP2...

9.8CVSS7.3AI score0.98518EPSS
Exploits19
GithubExploit
GithubExploit
added 2021/03/11 5:54 a.m.6 views

Exploit for Unrestricted Upload of File with Dangerous Type in Apache Activemq

CVE-2016-3088 Apache ActiveMQ Remote Code Execution Exploit...

9.8CVSS8.7AI score0.98518EPSS
Exploits19
Gitee
Gitee
added 2020/07/27 10:27 a.m.3 views

Exploit for Unrestricted Upload of File with Dangerous Type in Apache Activemq

This repository is an offensive tool for ActiveMQ. It is a PoC exploit for CVE-2016-3088. The tool is designed to upload a shell to the ActiveMQ server, allowing for remote code execution. The exploit targets a vulnerability in the ActiveMQ file server, which allows an attacker to upload a file t...

9.8CVSS8.8AI score0.98518EPSS
Exploits19
Gitee
Gitee
added 2020/06/12 3:13 p.m.3 views

Exploit for Unrestricted Upload of File with Dangerous Type in Apache Activemq

This repository is an offensive tool for collecting or writing various vulnerability PoCs proofs of concept and exploits. The primary tool in this repository is a Python script named ActiveMQExP/ActiveMQExPV1.0.py, which is designed to exploit a vulnerability in Apache ActiveMQ, specifically...

9.8CVSS8.1AI score0.98518EPSS
Exploits19
Gitee
Gitee
added 2019/09/19 3:47 p.m.6 views

Exploit for Unrestricted Upload of File with Dangerous Type in Apache Activemq

This repository is an offensive tool for ActiveMQ. It is a proof-of-concept PoC exploit for CVE-2016-3088. The tool is designed to upload a shell to the ActiveMQ server and execute it, allowing for remote code execution. The tool is written in Python and uses the urlparse and urlunparse modules t...

9.8CVSS8.9AI score0.98518EPSS
Exploits19
Tenable Nessus
Tenable Nessus
added 2018/09/19 12:0 a.m.120 views

Apache ActiveMQ 5.x < 5.14.0 ActiveMQ Fileserver web application remote code execution (Xbash)

The version of Apache ActiveMQ running on the remote host is 5.x prior to 5.14.0. It is, therefore, affected by a remote code execution vulnerability. The Fileserver web application allows remote attackers to upload and execute arbitrary files. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

9.8CVSS9.6AI score0.98518EPSS
Exploits19References2
seebug.org
seebug.org
added 2017/07/04 12:0 a.m.236 views

Apache ActiveMQ Fileserver remote code execution vulnerability(CVE-2016-3088)

Author: The know Chong Yu 404 laboratory 1. Background overview ActiveMQ is an Apache Software Foundation under an open source message-driven middleware software. Jetty is an open source servlet container, it is based on Java web container such as JSP and servlet to provide the running...

7.5CVSS10AI score0.98518EPSS
Exploits19
0day.today
0day.today
added 2017/06/30 12:0 a.m.646 views

Apache ActiveMQ < 5.14.0 - Web Shell Upload Exploit

The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request. This module requires Metasploit: http://metasploit.com/download Current source:...

7.5CVSS0.5AI score0.98518EPSS
Exploits19
Exploit DB
Exploit DB
added 2017/06/29 12:0 a.m.444 views

ActiveMQ &lt; 5.14.0 - Web Shell Upload (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ActiveMQ web shell upload', 'Description' = %q The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to uplo...

9.8CVSS9.8AI score0.98518EPSS
Exploits19
Packet Storm
Packet Storm
added 2017/06/29 12:0 a.m.424 views

Apache ActiveMQ 5.x Web Shell Upload

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ActiveMQ web shell upload', 'Description' = %q The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to uplo...

7.5CVSS9.8AI score0.98518EPSS
Exploits19
Metasploit
Metasploit
added 2017/06/06 6:33 p.m.197 views

ActiveMQ web shell upload

The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request. This module requires Metasploit: https://metasploit.com/download Current source:...

9.8CVSS10AI score0.98518EPSS
Exploits19
Check Point Advisories
Check Point Advisories
added 2016/07/25 12:0 a.m.10 views

Apache ActiveMQ Fileserver Multi Methods Directory Traversal (CVE-2016-3088)

A directory traversal vulnerability exists in Apache ActiveMQ. The vulnerability is due to insufficient input validation in the destination header when processing a MOVE request or in the file upload functionality when processing a PUT request. A remote, unauthenticated attacker may exploit this...

7.5CVSS3.6AI score0.98518EPSS
Exploits19
OSV
OSV
added 2016/06/01 8:59 p.m.15 views

CVE-2016-3088

The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request...

9.8CVSS9.9AI score0.98518EPSS
Exploits19References10
Vulnrichment
Vulnrichment
added 2016/06/01 8:0 p.m.11 views

CVE-2016-3088

The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request...

7.8AI score0.98518EPSS
Exploits19References9
CVE
CVE
added 2016/06/01 8:0 p.m.1153 views

CVE-2016-3088

CVE-2016-3088 affects Apache ActiveMQ 5.x prior to 5.14.0. The Fileserver web application vulnerable to remote code execution via an HTTP PUT followed by an HTTP MOVE request allows an attacker to upload and execute arbitrary files on the server. Connected PoC repositories describe Python-based a...

9.8CVSS9.7AI score0.98518EPSS
In wildExploits19References10Affected Software1
Circl
Circl
added 2015/08/17 12:0 a.m.11 views

CVE-2016-3088

creationtimestamp| type| source ---|---|--- 2015-08-17 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40857 2017-06-29 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/42283 2018-05-29 15:50:33+00:00| seen|...

9.8CVSS7.5AI score0.98518EPSS
In wildExploits19References9
Rows per page
Query Builder