14 matches found
EUVD-2025-21749
Malicious code in bioql PyPI...
CVE-2025-34121
An unauthenticated arbitrary file upload vulnerability exists in Idera Up.Time Monitoring Station versions up to and including 7.2. The wizards/post2file.php script accepts arbitrary POST parameters, allowing attackers to upload crafted PHP files to the webroot. Successful exploitation results in...
CVE-2025-34121
An unauthenticated arbitrary file upload vulnerability exists in Idera Up.Time Monitoring Station versions up to and including 7.2. The wizards/post2file.php script accepts arbitrary POST parameters, allowing attackers to upload crafted PHP files to the webroot. Successful exploitation results in...
CVE-2025-34121 Idera Up.Time ≤ 7.2 post2file.php Arbitrary File Upload RCE
An unauthenticated arbitrary file upload vulnerability exists in Idera Up.Time Monitoring Station versions up to and including 7.2. The wizards/post2file.php script accepts arbitrary POST parameters, allowing attackers to upload crafted PHP files to the webroot. Successful exploitation results in...
CVE-2025-34121
Idera Up.Time Monitoring Station
CVE-2025-34121 Idera Up.Time ≤ 7.2 post2file.php Arbitrary File Upload RCE
An unauthenticated arbitrary file upload vulnerability exists in Idera Up.Time Monitoring Station versions up to and including 7.2. The wizards/post2file.php script accepts arbitrary POST parameters, allowing attackers to upload crafted PHP files to the webroot. Successful exploitation results in...
PT-2025-29884 · Idera · Idera Up.Time Monitoring Station
Name of the Vulnerable Software and Affected Versions: Idera Up.Time Monitoring Station versions up to and including 7.2 Description: An unauthenticated arbitrary file upload issue exists. The wizards/post2file.php script accepts arbitrary POST parameters, allowing attackers to upload crafted PHP...
Idera Up.time Monitoring Station Arbitrary File Upload Vulnerability
Idera Up.time Monitoring Station is a cross-platform server monitoring software from Idera. The software provides the server performance, availability and other indicators to collect, summarize and generate reports and other functions. An arbitrary file upload vulnerability exists in the...
Idera Up.time Agent Information Disclosure Vulnerability
Idera Up.time Agent is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Idera Up.time client for Linux Arbitrary File Read Vulnerability
Idera Up.time client for Linux is a server performance monitoring software client for Linux-based platforms. An arbitrary file read vulnerability exists in Idera Up.time client for Linux, which can be exploited by remote attackers to submit a special request to read an arbitrary file...
Idera Up.time agent for Windows Information Disclosure Vulnerability
Idera Up.time client for Windows is a Windows-based infrastructure performance monitoring software client from Idera Corporation. An information disclosure vulnerability exists in Idera Up.time client for Windows 7.6 and earlier. A remote attacker can exploit this vulnerability by sending built-i...
Idera Up.Time Monitoring Station 7.4 - 'post2file.php' Arbitrary File Upload (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'nokogiri' class Metasploit4 'Idera Up.Time Monitoring Station 7.4 post2file.php Arbitrary File Upload', 'Description' = %q This module exploit...
Idera Up.Time Monitoring Station 7.0 post2file.php Arbitrary File Upload Exploit
This Metasploit module exploits an arbitrary file upload vulnerability found within the Up.Time monitoring server 7.2 and below. A malicious entity can upload a PHP file into the webroot without authentication, leading to arbitrary code execution. Although the vendor fixed Up.Time to prevent this...
Idera Up.Time Monitoring Station 7.4 post2file.php Arbitrary File Upload Version 2
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'nokogiri' class Metasploit4 'Idera Up.Time Monitoring Station 7.4 post2file.php Arbitrary File Upload', 'Description' = %q This module exploit...