Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-4192

Malware in sbrugna...

9CVSS8.7AI score0.01368EPSS
Exploits0References2
Prion
Prion
added 2020/08/07 4:15 p.m.12 views

Command injection

DKIM key management page vulnerability on Micro Focus Secure Messaging Gateway SMG. Affecting all SMG Appliance running releases prior to July 2020. The vulnerability could allow a logged in user with rights to generate DKIM key information to inject system commands into the call to the DKIM syst...

9CVSS8.4AI score0.01368EPSS
Exploits0References1Affected Software1
0day.today
0day.today
added 2018/07/24 12:0 a.m.68 views

Micro Focus Secure Messaging Gateway (SMG) < 471 - Remote Code Execution Exploit

Exploit for php platform in category remote exploits This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "MicroFocus Secure Messaging Gateway Remote Code Execution", 'Description' = %q This module...

0.80539EPSS
Exploits5
NVD
NVD
added 2018/06/29 4:29 p.m.16 views

CVE-2018-12464

A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows an unauthenticated remote attacker to execute arbitrary SQL statements against the database. This can be exploited to create an administrative account and used in...

10CVSS8.8AI score0.80539EPSS
Exploits5References3
Prion
Prion
added 2018/06/29 4:29 p.m.19 views

Sql injection

A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows an unauthenticated remote attacker to execute arbitrary SQL statements against the database. This can be exploited to create an administrative account and used in...

7.5CVSS7.8AI score0.80539EPSS
Exploits5References3Affected Software1
Prion
Prion
added 2018/06/29 4:29 p.m.7 views

Command injection

An OS command injection vulnerability in the web administration component of Micro Focus Secure Messaging Gateway SMG allows a remote attacker authenticated as a privileged user to execute arbitrary OS commands on the SMG server. This can be exploited in conjunction with CVE-2018-12464 to achieve...

9CVSS8.5AI score0.80539EPSS
Exploits5References3Affected Software1
Cvelist
Cvelist
added 2018/06/29 4:0 p.m.22 views

CVE-2018-12464 Unauthenticated SQL injection in Micro Focus Secure Messaging Gateway

A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows an unauthenticated remote attacker to execute arbitrary SQL statements against the database. This can be exploited to create an administrative account and used in...

10CVSS9.7AI score0.80539EPSS
Exploits5References3
CVE
CVE
added 2018/06/29 4:0 p.m.57 views

CVE-2018-12464

CVE-2018-12464 is a SQL injection vulnerability in Micro Focus Secure Messaging Gateway (SMG) affecting the Web administration and quarantine components. It occurs in versions prior to 471 and enables an unauthenticated remote attacker to execute arbitrary SQL statements against the SMG database,...

10CVSS8.9AI score0.80539EPSS
Exploits5References3Affected Software1
Cvelist
Cvelist
added 2018/06/29 4:0 p.m.23 views

CVE-2018-12465 Remote Code Execution in Micro Focus Secure Messaging Gateway

An OS command injection vulnerability in the web administration component of Micro Focus Secure Messaging Gateway SMG allows a remote attacker authenticated as a privileged user to execute arbitrary OS commands on the SMG server. This can be exploited in conjunction with CVE-2018-12464 to achieve...

9.1CVSS9.4AI score0.78955EPSS
Exploits5References3
Rows per page
Query Builder