Lucene search
K

7 matches found

Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.196 views

GitStack Unauthenticated REST API Requests

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GitStack Unauthenticated REST API Requests', 'Description' = %q This modules exploits unauthenticated REST API requests in GitStack through...

9.8CVSS7AI score0.80982EPSS
Exploits9
Check Point Advisories
Check Point Advisories
added 2020/06/16 12:0 a.m.5 views

GitStack Authentication Bypass (CVE-2018-5955)

A vulnerability exists in smart-mobile-software GitStack. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

7.5CVSS6.4AI score0.80982EPSS
Exploits9
Exploit DB
Exploit DB
added 2018/03/29 12:0 a.m.101 views

GitStack - Unsanitized Argument Remote Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GitStack Unsanitized Argument RCE', 'Description' = %q This module exploits a remote code execution vulnerability that exists in GitStack through...

9.8CVSS7.4AI score0.80982EPSS
Exploits9
Metasploit
Metasploit
added 2018/02/26 12:4 p.m.89 views

GitStack Unauthenticated REST API Requests

This modules exploits unauthenticated REST API requests in GitStack through v2.3.10. The module supports requests for listing users of the application and listing available repositories. Additionally, the module can create a user and add the user to the application's repositories. This module has...

9.8CVSS0.80982EPSS
Exploits9
CVE
CVE
added 2018/01/21 10:0 p.m.87 views

CVE-2018-5955

GitStack (through v2.3.10) is affected by CVE-2018-5955 due to insufficient input filtering in the rest/user/ URI, allowing an unauthenticated attacker to add a user to the server. Public details include a verified PoC and Metasploit modules (e.g., Exploit-DB 44356; Metasploit auxiliary/exploit m...

9.8CVSS9.4AI score0.80982EPSS
Exploits9References2Affected Software1
Exploit DB
Exploit DB
added 2018/01/15 12:0 a.m.59 views

GitStack - Remote Code Execution

Vulnerability Summary The following advisory describes an unauthenticated action that allows a remote attacker to add a user to GitStack and then used to trigger an unauthenticated remote code execution. GitStack is “a software that lets you setup your own private Git server for Windows. This mea...

9.8CVSS9.7AI score0.80982EPSS
Exploits9
exploitpack
exploitpack
added 2018/01/15 12:0 a.m.44 views

GitStack - Remote Code Execution

GitStack - Remote Code Execution Vulnerability Summary The following advisory describes an unauthenticated action that allows a remote attacker to add a user to GitStack and then used to trigger an unauthenticated remote code execution. GitStack is “a software that lets you setup your own private...

7.5CVSS0.3AI score0.80982EPSS
Exploits9
Rows per page
Query Builder