diskpulse-poc

diskpulse-poc Exploit for OSED prep on DiskPulse Enter...

CVE-2020-36927

DiskPulse Enterprise 13.6.14 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Disk Pulse Enterprise\bin\diskpls.exe' to inject...

Flexense DiskPulse Enterprise security vulnerabilities

Flexense DiskPulse Enterprise is a centralized report database server offered by Flexense DiskPulse Corporation. Version 13.6.14 of Flexense DiskPulse Enterprise contains a security vulnerability. This vulnerability stems from the use of service paths without quotes in Windows service...

CVE-2020-36927 DiskPulse 13.6.14 - Unquoted Service Path

DiskPulse Enterprise 13.6.14 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Disk Pulse Enterprise\bin\diskpls.exe' to inject...

CVE-2020-36927

DiskPulse Enterprise 13.6.14 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Disk Pulse Enterprise\bin\diskpls.exe' to inject...

CVE-2020-36927 DiskPulse 13.6.14 - Unquoted Service Path

DiskPulse Enterprise 13.6.14 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Disk Pulse Enterprise\bin\diskpls.exe' to inject...

EUVD-2018-2636

Malware in sbrugna...

Flexense DiskPulse Enterprise 安全漏洞

Flexense DiskPulse Enterprise is a centralized reporting database server from Flexense DiskPulse. A security vulnerability exists in Flexense DiskPulse Enterprise version 9.0.34, which stems from improper boundary checking of the login function and could result in a stack buffer overflow...

DiskPulse 13.6.14 - 'Multiple' Unquoted Service Path

Exploit Title: DiskPulse 13.6.14 - 'Multiple' Unquoted Service Path Discovery by: Brian Rodriguez Date: 14-06-2021 Vendor Homepage: https://www.diskpulse.com Software Links: https://www.diskpulse.com/setupsx64/diskpulseentsetupv13.6.14x64.exe...

DiskPulse 13.6.14 - (Multiple) Unquoted Service Path Vulnerability

Exploit Title: DiskPulse 13.6.14 - 'Multiple' Unquoted Service Path Discovery by: Brian Rodriguez Vendor Homepage: https://www.diskpulse.com Software Links: https://www.diskpulse.com/setupsx64/diskpulseentsetupv13.6.14x64.exe https://www.diskpulse.com/setupsx64/diskpulsesrvsetupv13.6.14x64.exe...

DiskPulse 13.6.14 Unquoted Service Path

Exploit Title: DiskPulse 13.6.14 - 'Multiple' Unquoted Service Path Discovery by: Brian Rodriguez Date: 14-06-2021 Vendor Homepage: https://www.diskpulse.com Software Links: https://www.diskpulse.com/setupsx64/diskpulseentsetupv13.6.14x64.exe...

Flexense DiskPulse Enterprise Cross-Site Scripting Vulnerability

Flexense DiskPulse Enterprise is a real-time disk change monitoring solution from Flexense Canada. The solution supports monitoring multiple disks or directories and exporting disk change monitoring statistics to a centralized SQL database. A cross-site scripting vulnerability exists in Flexense...

CVE-2018-10564

XSS exists in Flexense DiskPulse Enterprise from v10.4 to v10.7...

Cross site scripting

XSS exists in Flexense DiskPulse Enterprise from v10.4 to v10.7...

CVE-2018-10564

XSS exists in Flexense DiskPulse Enterprise from v10.4 to v10.7...

CVE-2018-10564

XSS exists in Flexense DiskPulse Enterprise from v10.4 to v10.7...

CVE-2018-10564

CVE-2018-10564 is a cross-site scripting vulnerability in Flexense DiskPulse Enterprise, affecting versions 10.4 through 10.7. The connected CNVD/NVD entries describe an XSS flaw that could allow a remote attacker to execute code in the victim’s context and potentially obtain sensitive informatio...

Flexense DiskPulse 10.7 Cross Site Scripting

Description: URL: localhost/ Affected Component: /?n0ipr0csalert'XSS'n0ipr0cs=1 Vulnerability Type: Cross Site Scripting https://cwe.mitre.org/data/definitions/79.html Vendor of Product: Flexense DiskPulse Version: from v10.4 to v10.7. Attack Type: Remote Impact: This attack allows an attacker co...

SysGauge Pro 4.6.12 - Local Buffer Overflow (SEH)

SysGauge Pro 4.6.12 - Local Buffer Overflow SEH !/usr/bin/python Exploit Title : SysGauge Pro v4.6.12 - Local Buffer Overflow SEH Exploit Author : Hashim Jawad Twitter : @ihack4falafel Author Website : ihack4falafel.com Vendor Homepage : http://www.sysgauge.com/ Vulnerable Software :...

CVE-2017-7310

A buffer overflow vulnerability in Import Command in SyncBreeze before 10.6, DiskSorter before 10.6, DiskBoss before 8.9, DiskPulse before 10.6, DiskSavvy before 10.6, DupScout before 10.6, and VX Search before 10.6 allows attackers to execute arbitrary code via a crafted XML file containing a lo...