Lucene search
K

11 matches found

0day.today
0day.today
added 2019/06/26 12:0 a.m.2161 views

Nagios XI Magpie_debug.php Root Remote Code Execution Exploit

This Metasploit module exploits two vulnerabilities in Nagios XI 5.5.6. One allows for unauthenticated remote code execution and another allows for local privilege escalation. When combined, these two vulnerabilities give us a root reverse shell. This module requires Metasploit:...

9.8CVSS0.9AI score0.89362EPSS
Exploits10
Exploit DB
Exploit DB
added 2019/06/26 12:0 a.m.521 views

Nagios XI 5.5.6 - Magpie_debug.php Root Remote Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Nagios XI Magpiedebug.php Root Remote Code Execution", 'Description' = %q This module exploits two vulnerabilities in Nagios XI 5.5.6:...

9.8CVSS9.8AI score0.89362EPSS
Exploits9
Metasploit
Metasploit
added 2019/06/25 9:10 p.m.68 views

Nagios XI Magpie_debug.php Root Remote Code Execution

This module exploits two vulnerabilities in Nagios XI 'Nagios XI Magpiedebug.php Root Remote Code Execution', 'Description' = %q This module exploits two vulnerabilities in Nagios XI MSFLICENSE, 'Author' = 'Chris Lyne @lynerc', Discovery and exploit 'Guillaume André @yaumn', Metasploit module...

9.8CVSS1AI score0.89362EPSS
Exploits10
Check Point Advisories
Check Point Advisories
added 2019/02/20 12:0 a.m.5 views

Nagios XI Cmdsubsys Command Injection (CVE-2018-15709; CVE-2018-15710)

An command injection vulnerability has been reported in the Command subsystem component of Nagios XI. The vulnerability is due to insufficient validation of command options submitted to ajaxhelper.php for the submitcommand action and the existence of a local privilege escalation vulnerability tha...

7.2CVSS2.4AI score0.44094EPSS
Exploits9
Circl
Circl
added 2019/02/05 8:36 a.m.15 views

CVE-2018-15710

creationtimestamp| type| source ---|---|--- 2019-02-05 08:36:44+00:00| published-proof-of-concept| https://t.me/antichat/3504 2019-06-25 21:32:35+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/nagiosximagpiedebug.rb 2019-06-26 00:00:00+00:00|...

7.8CVSS7.2AI score0.44094EPSS
Exploits8References3
0day.today
0day.today
added 2019/01/23 12:0 a.m.657 views

Nagios XI 5.5.6 - Remote Code Execution / Privilege Escalation Exploit

Exploit for linux platform in category web applications Exploit Title: Nagios XI 5.5.6 Remote Code Execution and Privilege Escalation Exploit Author: Chris Lyne @lynerc Vendor Homepage: https://www.nagios.com/ Product: Nagios XI Software Link:...

7.5CVSS0.2AI score0.89362EPSS
Exploits10
exploitpack
exploitpack
added 2019/01/23 12:0 a.m.67 views

Nagios XI 5.5.6 - Remote Code Execution Privilege Escalation

Nagios XI 5.5.6 - Remote Code Execution Privilege Escalation Exploit Title: Nagios XI 5.5.6 Remote Code Execution and Privilege Escalation Date: 2019-01-22 Exploit Author: Chris Lyne @lynerc Vendor Homepage: https://www.nagios.com/ Product: Nagios XI Software Link:...

7.5CVSS0.9AI score0.89362EPSS
Exploits10
Exploit DB
Exploit DB
added 2019/01/23 12:0 a.m.501 views

Nagios XI 5.5.6 - Remote Code Execution / Privilege Escalation

Exploit Title: Nagios XI 5.5.6 Remote Code Execution and Privilege Escalation Date: 2019-01-22 Exploit Author: Chris Lyne @lynerc Vendor Homepage: https://www.nagios.com/ Product: Nagios XI Software Link: https://assets.nagios.com/downloads/nagiosxi/5/xi-5.5.6.tar.gz Version: From 2012r1.0 to 5.5...

9.8CVSS8.7AI score0.89362EPSS
Exploits10
CVE
CVE
added 2018/11/14 6:0 p.m.156 views

CVE-2018-15710

Nagios XI 5.5.6 is affected by CVE-2018-15710: local authenticated privilege escalation via Autodiscover_new.php. Public exploit coverage exists (Exploit-DB 46221/47039) and a Metasploit module is available describing root-level execution. The provided documents do not specify a patched version o...

7.8CVSS8.3AI score0.44094EPSS
Exploits8References3Affected Software1
Cvelist
Cvelist
added 2018/11/14 6:0 p.m.23 views

CVE-2018-15710

Nagios XI 5.5.6 allows local authenticated attackers to escalate privileges to root via Autodiscovernew.php...

8.5AI score0.44094EPSS
Exploits8References3
ATTACKERKB
ATTACKERKB
added 2018/11/14 12:0 a.m.28 views

Nagios XI RCE via Snoopy Library

Snoopy 1.0 in Nagios XI 5.5.6 allows remote unauthenticated attackers to execute arbitrary commands via a crafted HTTP request. Recent assessments: space-r7 at June 28, 2019 3:23pm UTC reported: If this vulnerability is found in the wild, then it’s likely that the target is vulnerable to...

9.8CVSS2.2AI score0.89362EPSS
Exploits10References3
Rows per page
Query Builder