119 matches found
PineApp Mail-SeCure - 'ldapsyncnow.php' Arbitrary Command Execution (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'PineApp Mail-SeCure ldapsyncnow.php...
PineApp Mail-SeCure Detection
PineApp Mail-SeCure, a perimeter-based email security application with a web-based interface, is running on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid69176; scriptversion"1.4"; scriptsetattributeattribute:"pluginmodificationdate",...
PineApp Mail-SeCure test_li_connection.php Remote Command Injection
The version of PineApp Mail-SeCure installed on the remote host is affected by a remote command injection vulnerability because the application fails to properly sanitize input to the 'testliconnection.php' script. This could allow a remote, unauthenticated attacker to execute arbitrary commands ...
PineApp Mail-SeCure Default Credentials
The remote PineApp Mail-SeCure install uses a default set of credentials 'pineapp' / 'password' to control access to its management interface. With this information, an attacker can gain administrative access to the application. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
PineApp Mail-SeCure livelog.html Arbitrary Command Execution
This Metasploit module exploits a command injection vulnerability on PineApp Mail-SeCure 3.70. The vulnerability exists on the livelog.html component, due to the insecure usage of the shellexec php function. This Metasploit module has been tested successfully on PineApp Mail-SeCure 3.70. This fil...
PineApp Mail-SeCure test_li_connection.php Arbitrary Command Execution
This Metasploit module exploits a command injection vulnerability on PineApp Mail-SeCure 3.70. The vulnerability exists on the testliconnection.php component, due to the insecure usage of the system php function. This Metasploit module has been tested successfully on PineApp Mail-SeCure 3.70. Thi...
PineApp Mail-SeCure ldapsyncnow.php Arbitrary Command Execution
This Metasploit module exploits a command injection vulnerability on PineApp Mail-SeCure 3.70. The vulnerability exists on the ldapsyncnow.php component, due to the insecure usage of the shellexec php function. This Metasploit module has been tested successfully on PineApp Mail-SeCure 3.70. This...
PineApp Mail-SeCure livelog.html Arbitrary Command Execution
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'PineApp Mail-SeCure livelog.html...
PineApp Mail-SeCure ldapsyncnow.php Arbitrary Command Execution
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'PineApp Mail-SeCure ldapsyncnow.php...
PineApp Mail-SeCure test_li_connection.php Arbitrary Command Execution
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'PineApp Mail-SeCure...
PineApp Mail-SeCure livelog.html Arbitrary Command Execution
This module exploits a command injection vulnerability on PineApp Mail-SeCure 3.70. The vulnerability exists on the livelog.html component, due to the insecure usage of the shellexec php function. This module has been tested successfully on PineApp Mail-SeCure 3.70. This module requires Metasploi...
PineApp Mail-SeCure ldapsyncnow.php Arbitrary Command Execution
This module exploits a command injection vulnerability on PineApp Mail-SeCure 3.70. The vulnerability exists on the ldapsyncnow.php component, due to the insecure usage of the shellexec php function. This module has been tested successfully on PineApp Mail-SeCure 3.70. This module requires...
PineApp Mail-SeCure test_li_connection.php Arbitrary Command Execution
This module exploits a command injection vulnerability on PineApp Mail-SeCure 3.70. The vulnerability exists on the testliconnection.php component, due to the insecure usage of the system php function. This module has been tested successfully on PineApp Mail-SeCure 3.70. This module requires...
(0Day) PineApp Mail-SeCure conflivelog.pl Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of PineApp Mail-SeCure. Authentication is not required to exploit this vulnerability. The specific flaws exist with input sanitization in the conflivelog.pl component. This flaw allows for the injecti...
(0Day) PineApp Mail-SeCure ldapsyncnow.php Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of PineApp Mail-SeCure. Authentication is not required to exploit this vulnerability. The specific flaw exists with input sanitization in the ldapsyncnow.php component. This flaw allows for the...
(0Day) PineApp Mail-SeCure confpremenu.php Install License Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of PineApp Mail-SeCure. Authentication is not required to exploit this vulnerability. The specific flaw exists with input sanitization in the confpremenu.php component. This flaw allows for the...
(0Day) PineApp Mail-SeCure confpremenu.php Export Log Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of PineApp Mail-SeCure. Authentication is not required to exploit this vulnerability. The specific flaw exists with input sanitization in the confpremenu.php component. This flaw allows for the...
(0Day) PineApp Mail-SeCure livelog.html Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of PineApp Mail-SeCure. Authentication is not required to exploit this vulnerability. The specific flaws exist with input sanitization in the livelog.html component. These flaws allow for the injectio...
(0Day) PineApp Mail-SeCure test_li_connection.php Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of PineApp Mail-SeCure. Authentication is not required to exploit this vulnerability. The specific flaw exists with input sanitization in the testliconnection.php component. This flaw allows for the...