Lucene search
K

8 matches found

Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.457 views

Fortra FileCatalyst Workflow SQL Injection

require 'digest/md5' class MetasploitModule 'Fortra FileCatalyst Workflow SQL Injection CVE-2024-5276', 'Description' = %q This module exploits a SQL injection vulnerability in Fortra FileCatalyst Workflow 'Tenable', Discovery and PoC 'Michael Heinzl' MSF Module , 'References' = 'CVE', '2024-5276...

9.8CVSS7.1AI score0.90067EPSS
Exploits5
Rapid7 Blog
Rapid7 Blog
added 2024/08/23 3:8 p.m.21 views

Metasploit Weekly Wrap-Up 08/23/2024

New module content 3 Fortra FileCatalyst Workflow SQL Injection CVE-2024-5276 Authors: Michael Heinzl and Tenable Type: Auxiliary Pull request: 19373 contributed by h4x-x0r Path: admin/http/fortrafilecatalystworkflowsqli AttackerKB reference: CVE-2024-5276 Description: This adds an auxiliary modu...

9.8CVSS9AI score0.90067EPSS
Exploits10
Metasploit
Metasploit
added 2024/08/19 6:51 p.m.285 views

Fortra FileCatalyst Workflow SQL Injection (CVE-2024-5276)

This module exploits a SQL injection vulnerability in Fortra FileCatalyst Workflow use auxiliary/admin/http/fortrafilecatalystworkflowsqli msf auxiliaryfortrafilecatalystworkflowsqli show actions ...actions... msf auxiliaryfortrafilecatalystworkflowsqli set ACTION msf...

9.8CVSS9.6AI score0.90067EPSS
Exploits5
Circl
Circl
added 2024/06/27 8:58 a.m.22 views

CVE-2024-5276

creationtimestamp| type| source ---|---|--- 2024-06-27 08:58:21+00:00| seen| https://t.me/thehackernews/5177 2024-06-27 09:35:36+00:00| seen| https://t.me/KomunitiSiber/2169 2024-06-27 10:23:20+00:00| seen| Telegram/qmEDHLBNdp1opQyESxLY8cSE-jzGu9bN7IsUBrgZMpYv7A 2024-06-27 10:26:03+00:00| seen|...

9.8CVSS8AI score0.90067EPSS
Exploits5References8
The Hacker News
The Hacker News
added 2024/06/27 6:45 a.m.54 views

Critical SQLi Vulnerability Found in Fortra FileCatalyst Workflow Application

A critical security flaw has been disclosed in Fortra FileCatalyst Workflow that, if left unpatched, could allow an attacker to tamper with the application database. Tracked as CVE-2024-5276, the vulnerability carries a CVSS score of 9.8. It impacts FileCatalyst Workflow versions 5.1.6 Build 135...

9.8CVSS8.2AI score0.90067EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2024/06/27 12:0 a.m.20 views

Fortra FileCatalyst Workflow SQLi (CVE-2024-5276) (Version Check)

The version of Fortra FileCatalyst Workflow running on the remote host is prior to 5.1.6 Build 139. It is, therefore, is affected by a SQL injection vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

9.8CVSS8.6AI score0.90067EPSS
Exploits5References3
Vulnrichment
Vulnrichment
added 2024/06/25 7:13 p.m.26 views

CVE-2024-5276 SQL Injection Vulnerability in FileCatalyst Workflow 5.1.6 Build 135 (and earlier)

A SQL Injection vulnerability in Fortra FileCatalyst Workflow allows an attacker to modify application data. Likely impacts include creation of administrative users and deletion or modification of data in the application database. Data exfiltration via SQL injection is not possible using this...

9.8CVSS8.3AI score0.90067EPSS
Exploits5References3
Cvelist
Cvelist
added 2024/06/25 7:13 p.m.39 views

CVE-2024-5276 SQL Injection Vulnerability in FileCatalyst Workflow 5.1.6 Build 135 (and earlier)

A SQL Injection vulnerability in Fortra FileCatalyst Workflow allows an attacker to modify application data. Likely impacts include creation of administrative users and deletion or modification of data in the application database. Data exfiltration via SQL injection is not possible using this...

9.8CVSS0.90067EPSS
Exploits5References3
Rows per page
Query Builder