HP SiteScope SOAP Call LoadFileContent Remote File Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP SiteScope SOAP Call loadFileContent Remote File Access', 'Description' = %q This module exploits an authentication bypass vulnerability in HP...

IceFire Ransomware Exploits IBM Aspera Faspex to Attack Linux-Powered Enterprise Networks

A previously known Windows-based ransomware strain known as IceFire has expanded its focus to target Linux enterprise networks belonging to several media and entertainment sector organizations across the world. The intrusions entail the exploitation of a recently disclosed deserialization...

HP SiteScope Remote Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

CRMAPP SQL Injection

Crm Application - Time-Based Blind Injection =================================================================== .:. Author : AtT4CKxT3rR0r1ST .:. Contact : [email protected] , [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script : http://www.crmapp.com/ Time-Based Blind...

HP SiteScope Remote Code Execution

This module exploits a code execution flaw in HP SiteScope. It exploits two vulnerabilities in order to get its objective. An authentication bypass in the create operation, available through the APIPreferenceImpl AXIS service, to create a new account with empty credentials and, subsequently, uses...

HP SiteScope SOAP Call getSiteScopeConfiguration Configuration Access

This module exploits an authentication bypass vulnerability in HP SiteScope which allows to retrieve the HP SiteScope configuration, including administrative credentials. It is accomplished by calling the getSiteScopeConfiguration operation available through the APISiteScopeImpl AXIS service. The...

WzdFTPD 0.8.0 - 'USER' Remote Denial of Service

Indonesian Newhack Security Advisory ------------------------------------ wzdftpd new Proto = "tcp",...

WzdFTPD 0.8.0 - USER Remote Denial of Service

WzdFTPD 0.8.0 - USER Remote Denial of Service Indonesian Newhack Security Advisory ------------------------------------ wzdftpd new Proto = "tcp", PeerAddr...

wzdftpd <= 0.8.0 (USER) Remote Denial of Service Exploit

Exploit for unknown platform in category dos / poc ======================================================== wzdftpd = 0.8.0 USER Remote Denial of Service Exploit ======================================================== Indonesian Newhack Security Advisory ------------------------------------...