Lucene search
+L

10 matches found

checkpoint_advisories
checkpoint_advisories
added 2021/04/05 12:0 a.m.79 views

FortiLogger Arbitrary File Upload (CVE-2021-3378)

An arbitrary file upload vulnerability exists in FortiLogger. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5AI score0.97512EPSS
Exploits8
metasploit
metasploit
added 2021/03/25 5:42 p.m.100 views

FortiLogger Arbitrary File Upload Exploit

This module exploits an unauthenticated arbitrary file upload via insecure POST request. It has been tested on versions use exploit/windows/http/fortiloggerarbitraryfileupload msf exploitfortiloggerarbitraryfileupload show targets ...targets... msf exploitfortiloggerarbitraryfileupload set TARGET...

9.8CVSS9.4AI score0.97512EPSS
Exploits8
packetstorm
packetstorm
added 2021/03/25 12:0 a.m.898 views

FortiLogger Arbitrary File Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FortiLogger Arbitrary File Upload Exploit', 'Description' = %q This module exploits an unauthenticated arbitrary file upload via insecure POST...

7.5CVSS0.5AI score0.97512EPSS
Exploits8
zdt
zdt
added 2021/03/01 12:0 a.m.116 views

FortiLogger 4.4.2.2 - Unauthenticated Arbitrary File Upload Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FortiLogger Arbitrary File Upload Exploit', 'Description' = %q This module exploits an unauthenticated arbitrary file upload via insecure POST...

9.8CVSS0.97512EPSS
Exploits8
packetstorm
packetstorm
added 2021/03/01 12:0 a.m.467 views

FortiLogger 4.4.2.2 Arbitrary File Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FortiLogger Arbitrary File Upload Exploit', 'Description' = %q This module exploits an unauthenticated arbitrary file upload via insecure POST...

7.5CVSS0.2AI score0.97512EPSS
Exploits8
exploitdb
exploitdb
added 2021/03/01 12:0 a.m.712 views

FortiLogger 4.4.2.2 - Unauthenticated Arbitrary File Upload (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FortiLogger Arbitrary File Upload Exploit', 'Description' = %q This module exploits an unauthenticated arbitrary file upload via insecure POST...

9.8CVSS9.6AI score0.97512EPSS
Exploits8
circl
circl
added 2021/02/02 2:25 a.m.48 views

CVE-2021-3378

creationtimestamp| type| source ---|---|--- 2021-02-02 02:25:17+00:00| seen| https://t.me/cibsecurity/22933 2021-03-01 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/49600 2021-03-24 22:48:24+00:00| seen|...

9.8CVSS8.7AI score0.97512EPSS
Exploits8References4
cve
cve
added 2021/02/01 10:8 p.m.359 views

CVE-2021-3378

FortiLogger 4.4.2.2 is affected by an Arbitrary File Upload vulnerability. Attackers can trigger it by sending a Content-Type: image/png header to Config/SaveUploadedHotspotLogoFile, then access Assets/temp/hotspot/img/logohotspot.asp. The issue enables unauthenticated arbitrary file upload with ...

9.8CVSS9.2AI score0.97512EPSS
Exploits8References3Affected Software1
cvelist
cvelist
added 2021/02/01 10:8 p.m.55 views

CVE-2021-3378

FortiLogger 4.4.2.2 is affected by Arbitrary File Upload by sending a "Content-Type: image/png" header to Config/SaveUploadedHotspotLogoFile and then visiting Assets/temp/hotspot/img/logohotspot.asp...

9.7AI score0.97512EPSS
Exploits8References3
githubexploit
githubexploit
added 2021/01/30 11:47 p.m.229 views

Exploit for Unrestricted Upload of File with Dangerous Type in Fortilogger

CVE-2021-3378 | FortiLogger - Unauthenticated Arbitrary File...

9.8CVSS9.6AI score0.97512EPSS
Exploits8
Rows per page
Query Builder