Lucene search
K

16 matches found

Exploit DB
Exploit DB
added 2025/03/28 12:0 a.m.226 views

Progress Telerik Report Server 2024 Q1 (10.0.24.305) - Authentication Bypass

Exploit Title: Progress Telerik Report Server 2024 Q1 10.0.24.305 - Authentication Bypass Fofa Dork: title="Telerik Report Server" Date: 2024-09-22 Exploit Author: VeryLazyTech GitHub: https://github.com/verylazytech/CVE-2024-4358 Vendor Homepage: https://www.telerik.com/report-server Software...

9.8CVSS9.7AI score0.97482EPSS
Exploits14
Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.212 views

Telerik Report Server Auth Bypass

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Telerik Report Server Auth Bypass', 'Description' = %q This module exploits an authentication bypass vulnerability in Telerik Report Server...

9.9CVSS7.2AI score0.97482EPSS
Exploits14
GithubExploit
GithubExploit
added 2024/08/24 10:9 a.m.404 views

Exploit for Authentication Bypass by Spoofing in Telerik Report_Server_2024

PoC exploit for CVE-2024-4358 and CVE-2024-1800, a deserializati...

9.9CVSS10AI score0.97482EPSS
Exploits14
Metasploit
Metasploit
added 2024/06/13 7:55 p.m.434 views

Telerik Report Server Auth Bypass and Deserialization RCE

This module chains an authentication bypass vulnerability CVE-2024-4358 with a deserialization vulnerability CVE-2024-1800 to obtain remote code execution against Telerik Report Server version 10.0.24.130 and prior. The authentication bypass flaw allows an unauthenticated user to create a new use...

9.9CVSS8.9AI score0.97482EPSS
Exploits14
Packet Storm
Packet Storm
added 2024/06/13 12:0 a.m.295 views

Telerik Report Server Authentication Bypass / Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/zip' class MetasploitModule 'Telerik Report Server Auth Bypass and Deserialization RCE', 'Description' = %q This module chains an authentication bypass...

9.9CVSS7AI score0.97482EPSS
Exploits14
GithubExploit
GithubExploit
added 2024/06/09 6:30 a.m.449 views

Exploit for Authentication Bypass by Spoofing in Telerik Report_Server_2024

This is a PoC exploit for CVE-2024-4358, an authentication bypas...

9.8CVSS9.6AI score0.97482EPSS
Exploits14
GithubExploit
GithubExploit
added 2024/06/05 1:5 a.m.430 views

Exploit for Authentication Bypass by Spoofing in Telerik Report_Server_2024

CVE-2024-4358MassExploit Modified tools from @sinsinology to...

9.8CVSS9.8AI score0.97482EPSS
Exploits14
Tenable Nessus
Tenable Nessus
added 2024/06/05 12:0 a.m.33 views

Progress Telerik Report Server Authentication Bypass (CVE-2024-4358) (Direct Check)

Binary data telerikreportservercve-2024-4358.nbin...

9.8CVSS9.7AI score0.97482EPSS
Exploits14References2
GithubExploit
GithubExploit
added 2024/06/04 4:7 p.m.477 views

Exploit for Authentication Bypass by Spoofing in Telerik Report_Server_2024

CVE-2024-4358 / CVE-2024-1800 Telerik Report Server deserializ...

9.9CVSS10AI score0.97482EPSS
Exploits14
The Hacker News
The Hacker News
added 2024/06/04 2:43 p.m.36 views

Telerik Report Server Flaw Could Let Attackers Create Rogue Admin Accounts

Progress Software has rolled out updates to address a critical security flaw impacting the Telerik Report Server that could be potentially exploited by a remote attacker to bypass authentication and create rogue administrator users. The issue, tracked as CVE-2024-4358, carries a CVSS score of 9.8...

9.9CVSS8.5AI score0.97482EPSS
Exploits14
Tenable Nessus
Tenable Nessus
added 2024/06/04 12:0 a.m.42 views

Progress Telerik Report Server Authentication Bypass (CVE-2024-4358)

The version of Progress Telerik Report Server installed on the remote host is affected by an authentication bypass vulnerability, as follows: - In Progress Telerik Report Server, version 2024 Q1 10.0.24.305 or earlier, on IIS, an unauthenticated attacker can gain access to Telerik Report Server...

9.8CVSS8.7AI score0.97482EPSS
Exploits14References2
GithubExploit
GithubExploit
added 2024/06/03 8:22 a.m.440 views

Exploit for Authentication Bypass by Spoofing in Telerik Report_Server_2024

CVE-2024-4358 / CVE-2024-1800 Telerik Report Server deserializ...

9.9CVSS10AI score0.97482EPSS
Exploits14
Circl
Circl
added 2024/05/30 1:10 p.m.19 views

CVE-2024-4358

creationtimestamp| type| source ---|---|--- 2024-05-30 13:10:48+00:00| published-proof-of-concept| https://t.me/HackingInsights/1164 2024-06-03 12:53:24+00:00| published-proof-of-concept| https://t.me/orderofsixangles/2311 2024-06-04 09:30:41+00:00| seen| https://t.me/lostsec/565 2024-06-04...

9.8CVSS7.4AI score0.97482EPSS
In wildExploits14References45
OSV
OSV
added 2024/05/29 3:16 p.m.3 views

CVE-2024-4358

In Progress Telerik Report Server, version 2024 Q1 10.0.24.305 or earlier, on IIS, an unauthenticated attacker can gain access to Telerik Report Server restricted functionality via an authentication bypass vulnerability...

9.8CVSS5.8AI score0.97482EPSS
Exploits14References2
Vulnrichment
Vulnrichment
added 2024/05/29 2:51 p.m.36 views

CVE-2024-4358 Registration Authentication Bypass Vulnerability

In Progress Telerik Report Server, version 2024 Q1 10.0.24.305 or earlier, on IIS, an unauthenticated attacker can gain access to Telerik Report Server restricted functionality via an authentication bypass vulnerability...

9.8CVSS7.3AI score0.97482EPSS
Exploits14References1
Cvelist
Cvelist
added 2024/05/29 2:51 p.m.47 views

CVE-2024-4358 Registration Authentication Bypass Vulnerability

In Progress Telerik Report Server, version 2024 Q1 10.0.24.305 or earlier, on IIS, an unauthenticated attacker can gain access to Telerik Report Server restricted functionality via an authentication bypass vulnerability...

9.8CVSS9.8AI score0.97482EPSS
Exploits14References1
Rows per page
Query Builder