Lucene search
K

5 matches found

Check Point Advisories
Check Point Advisories
added 2019/07/07 12:0 a.m.1 views

dnaTools dnaLIMS DNA Sequencer Command Injection (CVE-2017-6526)

...

10CVSS2.5AI score0.574EPSS
Exploits9
Circl
Circl
added 2018/05/29 3:50 p.m.9 views

CVE-2017-6526

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/dnalimsadminexec.rb 2025-02-06 03:13:43+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:59+00:00| seen|...

10CVSS9.3AI score0.574EPSS
Exploits9References1
0day.today
0day.today
added 2017/04/02 12:0 a.m.79 views

dnaLIMS Admin Module Command Execution Exploit

Usage Info msf use exploit/linux/http/dnalimsadminexec msf exploitdnalimsadminexec show targets ...targets... msf exploitdnalimsadminexec set TARGET msf exploitdnalimsadminexec show options ...show and set options... msf exploitdnalimsadminexec exploit This module requires Metasploit:...

10CVSS9.2AI score0.574EPSS
Exploits9
CVE
CVE
added 2017/03/09 7:0 p.m.72 views

CVE-2017-6526

CVE-2017-6526 affects dnaTools dnaLIMS 4-2015s13. An unauthenticated command-execution flaw exists via an improperly protected administrative web shell at cgi-bin/dna/sysAdmin.cgi, triggered by POST requests. Public sources describe that the web interface bypasses authentication, enabling remote ...

10CVSS9.4AI score0.574EPSS
Exploits9References3Affected Software1
Metasploit
Metasploit
added 2017/03/09 2:46 p.m.32 views

dnaLIMS Admin Module Command Execution

This module utilizes an administrative module which allows for command execution. This page is completely unprotected from any authentication when given a POST request. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

9.8CVSS0.8AI score0.574EPSS
Exploits9
Rows per page
Query Builder