27 matches found
EUVD-2024-54418
Malicious code in bioql PyPI...
CVE-2024-53304
An issue in LRQA Nettitude PoshC2 after commit 09ee2cf allows unauthenticated attackers to connect to the C2 server and execute arbitrary commands via posing as an infected machine...
CVE-2024-53303
A remote code execution RCE vulnerability in the uploadfile function of LRQA Nettitude PoshC2 after commit 123db87 allows authenticated attackers to execute arbitrary code via a crafted POST request...
CVE-2024-53304
An issue in LRQA Nettitude PoshC2 after commit 09ee2cf allows unauthenticated attackers to connect to the C2 server and execute arbitrary commands via posing as an infected machine...
CVE-2024-53303
A remote code execution RCE vulnerability in the uploadfile function of LRQA Nettitude PoshC2 after commit 123db87 allows authenticated attackers to execute arbitrary code via a crafted POST request...
CVE-2024-53304
An issue in LRQA Nettitude PoshC2 after commit 09ee2cf allows unauthenticated attackers to connect to the C2 server and execute arbitrary commands via posing as an infected machine...
CVE-2024-53303
A remote code execution RCE vulnerability in the uploadfile function of LRQA Nettitude PoshC2 after commit 123db87 allows authenticated attackers to execute arbitrary code via a crafted POST request...
CVE-2024-53303
A remote code execution RCE vulnerability in the uploadfile function of LRQA Nettitude PoshC2 after commit 123db87 allows authenticated attackers to execute arbitrary code via a crafted POST request...
CVE-2024-53304
An issue in LRQA Nettitude PoshC2 after commit 09ee2cf allows unauthenticated attackers to connect to the C2 server and execute arbitrary commands via posing as an infected machine...
CVE-2024-53304
LRQA Nettitude PoshC2 is affected after commit 09ee2cf , allowing an unauthenticated attacker to connect to the C2 server and execute arbitrary commands by posing as an infected machine. The connected PT-2025-16874 note suggests a temporary workaround: restrict access to the C2 server until a pat...
LRQA Nettitude PoshC2 安全漏洞
LRQA Nettitude PoshC2 is an agent-aware C2 framework from LRQA used to help penetration testers with red teaming, late exploits, and lateral movement. A security vulnerability exists in LRQA Nettitude PoshC2 that stems from an uploadfile function that allows execution of arbitrary code via a...
PT-2025-16874 · Lrqa Nettitude · Poshc2
Name of the Vulnerable Software and Affected Versions: LRQA Nettitude PoshC2 versions after commit 09ee2cf Description: The issue allows unauthenticated attackers to connect to the C2 server and execute arbitrary commands by posing as an infected machine. Recommendations: For versions after commi...
CVE-2024-53303
CVE-2024-53303 is an RCE in LRQA Nettitude PoshC2, triggered by a crafted POST to the upload_file function after commit 123db87. It requires authentication, with PoC availability noted in the analysis metrics. CVSS 3.1 base score 8.8 (HIGH); attack vector NETWORK, attack complexity LOW, privilege...
FileCatalyst Workflow ftpservlet file upload
Added: 04/08/2024 Background FileCatalyst Workflow is a managed file transfer product. Problem The ftpservlet component in the FileCatalyst Workflow web portal is affected by a directory traversal vulnerability which could allow an anonymous user to upload files to arbitrary locations. This leads...
Fortra Patches Critical RCE Vulnerability in FileCatalyst Transfer Tool
Fortra has released details of a now-patched critical security flaw impacting its FileCatalyst file transfer solution that could allow unauthenticated attackers to gain remote code execution on susceptible servers. Tracked as CVE-2024-25153, the shortcoming carries a CVSS score of 9.8 out of a...
Exploit for External Control of Assumed-Immutable Web Parameter in Fortra Filecatalyst_Workflow
CVE-2024-25153 This is a proof of concept for CVE-2024-25153,...
Windows Interactive Powershell Session, Reverse TCP SSL
Listen for a connection and spawn an interactive powershell session over SSL Module Options msf use payload/windows/powershellreversetcpssl msf payloadpowershellreversetcpssl show actions ...actions... msf payloadpowershellreversetcpssl set ACTION msf payloadpowershellreversetcpssl show options...
UPDATE: PoshC2 v5.2
Back in November 2019, PoshC2 v5.0 was released and now, a couple of days ago PoshC2 v5.2 was released as well. This release has significant refactoring changes to make this open source post-exploitation C2 framework more intuitive to use and contribute to. The guys at Nettitude labs have taken...
Symantec Endpoint Protection Privilege Escalation
SUMMARY Symantec has released updates to address issues that were discovered in the Symantec Endpoint Protection SEP and Symantec Endpoint Protection Small Business Edition SEP SBE products. AFFECTED PRODUCTS Symantec Endpoint Protection SEP --- CVE | Affected Versions | Remediation CVE-2019-1275...
Inventory Plugin for Symantec Management Agent Privilege Escalation
SUMMARY Symantec has released an update to address an issue that was discovered in the Inventory Plugin for Symantec Management Agent Altiris product. AFFECTED PRODUCTS Inventory Plugin for Symantec Management Agent Altiris --- CVE | Affected Versions | Remediation CVE-2018-5240 | Prior to 7.6 PO...