11 matches found
Nagios XI Magpie_debug.php Root Remote Code Execution Exploit
This Metasploit module exploits two vulnerabilities in Nagios XI 5.5.6. One allows for unauthenticated remote code execution and another allows for local privilege escalation. When combined, these two vulnerabilities give us a root reverse shell. This module requires Metasploit:...
Nagios XI 5.5.6 - Magpie_debug.php Root Remote Code Execution (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Nagios XI Magpiedebug.php Root Remote Code Execution", 'Description' = %q This module exploits two vulnerabilities in Nagios XI 5.5.6:...
Nagios XI Magpie_debug.php Root Remote Code Execution
This module exploits two vulnerabilities in Nagios XI 'Nagios XI Magpiedebug.php Root Remote Code Execution', 'Description' = %q This module exploits two vulnerabilities in Nagios XI MSFLICENSE, 'Author' = 'Chris Lyne @lynerc', Discovery and exploit 'Guillaume André @yaumn', Metasploit module...
Nagios XI Cmdsubsys Command Injection (CVE-2018-15709; CVE-2018-15710)
An command injection vulnerability has been reported in the Command subsystem component of Nagios XI. The vulnerability is due to insufficient validation of command options submitted to ajaxhelper.php for the submitcommand action and the existence of a local privilege escalation vulnerability tha...
CVE-2018-15710
creationtimestamp| type| source ---|---|--- 2019-02-05 08:36:44+00:00| published-proof-of-concept| https://t.me/antichat/3504 2019-06-25 21:32:35+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/nagiosximagpiedebug.rb 2019-06-26 00:00:00+00:00|...
Nagios XI 5.5.6 - Remote Code Execution / Privilege Escalation Exploit
Exploit for linux platform in category web applications Exploit Title: Nagios XI 5.5.6 Remote Code Execution and Privilege Escalation Exploit Author: Chris Lyne @lynerc Vendor Homepage: https://www.nagios.com/ Product: Nagios XI Software Link:...
Nagios XI 5.5.6 - Remote Code Execution Privilege Escalation
Nagios XI 5.5.6 - Remote Code Execution Privilege Escalation Exploit Title: Nagios XI 5.5.6 Remote Code Execution and Privilege Escalation Date: 2019-01-22 Exploit Author: Chris Lyne @lynerc Vendor Homepage: https://www.nagios.com/ Product: Nagios XI Software Link:...
Nagios XI 5.5.6 - Remote Code Execution / Privilege Escalation
Exploit Title: Nagios XI 5.5.6 Remote Code Execution and Privilege Escalation Date: 2019-01-22 Exploit Author: Chris Lyne @lynerc Vendor Homepage: https://www.nagios.com/ Product: Nagios XI Software Link: https://assets.nagios.com/downloads/nagiosxi/5/xi-5.5.6.tar.gz Version: From 2012r1.0 to 5.5...
CVE-2018-15710
Nagios XI 5.5.6 is affected by CVE-2018-15710: local authenticated privilege escalation via Autodiscover_new.php. Public exploit coverage exists (Exploit-DB 46221/47039) and a Metasploit module is available describing root-level execution. The provided documents do not specify a patched version o...
CVE-2018-15710
Nagios XI 5.5.6 allows local authenticated attackers to escalate privileges to root via Autodiscovernew.php...
Nagios XI RCE via Snoopy Library
Snoopy 1.0 in Nagios XI 5.5.6 allows remote unauthenticated attackers to execute arbitrary commands via a crafted HTTP request. Recent assessments: space-r7 at June 28, 2019 3:23pm UTC reported: If this vulnerability is found in the wild, then it’s likely that the target is vulnerable to...