3 matches found
WebNMS Framework Server Credential Disclosure
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WebNMS Framework Server Credential Disclosure', 'Description' = %q This module abuses two vulnerabilities in WebNMS Framework Server 5.2 to extra...
CVE-2016-6602
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/webnmscreddisclosure.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:49+00:00| seen|...
CVE-2016-6602
CVE-2016-6601 and CVE-2016-6602 affect ZOHO WebNMS Framework 5.2 and 5.2 SP1. CVE-2016-6601 is a local file inclusion in the file download path (servlets/FetchFile) allowing reading arbitrary files via a .. in fileName. CVE-2016-6602 describes weak obfuscation storing passwords in WEB-INF/conf/se...