17 matches found
Rejetto HTTP File Server 2.3m - Remote Code Execution (RCE)
Exploit Title: Rejetto HTTP File Server 2.3m - Remote Code Execution RCE Fofa Dork: "HttpFileServer" && server=="HFS 2.3m" Date: 2024-09-22 Exploit Author: VeryLazyTech GitHub: https://github.com/verylazytech/CVE-2024-23692 Vendor Homepage: http://rejetto.com/hfs/ Software Link:...
Exploit for Code Injection in Rejetto Http_File_Server
This is a PoC exploit for CVE-2024-23692, a remote code executio...
Exploit for Code Injection in Rejetto Http_File_Server
HFS2.3poc HFS2.3未经身份验证的远程代码执行CVE-2024-23692 python HFS2.3...
Exploit for Code Injection in Rejetto Http_File_Server
CVE-2024-23692-poc CVE-2024-23692 is a template injection vu...
Exploit for Code Injection in Rejetto Http_File_Server
POC - Unauthenticated RCE Flaw in Rejetto HTTP File Server - C...
Rejetto HTTP File Server 2.x <= 2.3m RCE (CVE-2024-23692)
The version of Rejetto HTTP File Server installed on the remote host is 2.x up to 2.3m. It is, therefore, affected by a vulnerability: - Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This vulnerability allows a remote,...
Ukrainian Institutions Targeted Using HATVIBE and CHERRYSPY Malware
The Computer Emergency Response Team of Ukraine CERT-UA has alerted of a spear-phishing campaign that targeted a scientific research institution in the country with malware known as HATVIBE and CHERRYSPY. The agency attributed the attack to a threat actor it tracks under the name UAC-0063, which...
Microsoft Uncovers Critical Flaws in Rockwell Automation PanelView Plus
Microsoft has revealed two security flaws in Rockwell Automation PanelView Plus that could be weaponized by remote, unauthenticated attackers to execute arbitrary code and trigger a denial-of-service DoS condition. "The remote code execution vulnerability in PanelView Plus involves two custom...
Exploit for Code Injection in Rejetto Http_File_Server
CVE-2024-23692-EXP bash bash CVE-2024-...
Exploit for Code Injection in Rejetto Http_File_Server
CVE-2024-23692 Usage: go run hfs.go -h !1https://git...
Exploit for Code Injection in Rejetto Http_File_Server
TG Join Us: https://t.me/WanLiChangChengWanLiChang Join us f...
Exploit for Code Injection in Rejetto Http_File_Server
CVE-2024-23692 BURP POC GET /?n=%0A&cmd=ipconfig+/all&sea...
CVE-2024-23692
creationtimestamp| type| source ---|---|--- 2024-06-10 12:19:13+00:00| published-proof-of-concept| https://t.me/HackingInsights/2058 2024-06-11 12:26:44+00:00| published-proof-of-concept| https://t.me/paiddpam/2899 2024-06-11 17:39:00+00:00| seen|...
CVE-2024-23692
Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This vulnerability allows a remote, unauthenticated attacker to execute arbitrary commands on the affected system by sending a specially crafted HTTP request. As of the CVE assignment...
CVE-2024-23692 Rejetto HTTP File Server 2.3m Unauthenticated RCE
Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This vulnerability allows a remote, unauthenticated attacker to execute arbitrary commands on the affected system by sending a specially crafted HTTP request. As of the CVE assignment...
CVE-2024-23692
CVE-2024-23692 affects Rejetto HTTP File Server (HFS) versions up to 2.3m. The vulnerability is a server‑side template injection in the search parameter that is reflected into HFS templates, allowing an unauthenticated attacker to execute arbitrary commands (remote code execution). Exploitation c...
CVE-2024-23692
Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This vulnerability allows a remote, unauthenticated attacker to execute arbitrary commands on the affected system by sending a specially crafted HTTP request. As of the CVE assignment...