Input validation

antsle antman before 0.9.1a allows remote attackers to bypass authentication via invalid characters in the username and password parameters, as demonstrated by a username=&password=%0a string to the /login URI. This allows obtaining root permissions within the web management console, because the...

Antsle antman authentication bypass vulnerability

Antsle antman is a private cloud server product from Antsle USA. A security vulnerability exists in Antsle antman prior to version 0.9.1a, which stems from the login process using Java's ProcessBuilder class and a bash script that fails to adequately filter input when calling antsle-auth. A remot...

antMan 0.9.0c Authentication Bypass

Exploit Title: antMan and the password to a url-encoded linefeed %0a, we can force the authentication script to produce return values not anticipated by the developer. To exploit these defects, use a web proxy to intercept the login attempt and modify the POST parameters as follows:...

antMan 0.9.0c - Authentication Bypass

antMan 0.9.0c - Authentication Bypass Exploit Title: antMan and the password to a url-encoded linefeed %0a, we can force the authentication script to produce return values not anticipated by the developer. To exploit these defects, use a web proxy to intercept the login attempt and modify the POS...

antMan 0.9.0c - Authentication Bypass Vulnerability

Exploit for php platform in category web applications Exploit Title: antMan and the password to a url-encoded linefeed %0a, we can force the authentication script to produce return values not anticipated by the developer. To exploit these defects, use a web proxy to intercept the login attempt an...

antMan 0.9.0c - Authentication Bypass

Exploit Title: antMan and the password to a url-encoded linefeed %0a, we can force the authentication script to produce return values not anticipated by the developer. To exploit these defects, use a web proxy to intercept the login attempt and modify the POST parameters as follows:...

CVE-2018-7739

CVE-2018-7739 affects Antsle’s antMan web management console (pre-0.9.1a). A remote attacker can bypass authentication by sending invalid characters in the username and password to the /login URI. The login flow uses Java’s ProcessBuilder to invoke a root-privileged bash script (antsle-auth) with...

antMan < 0.9.1a - Authentication Bypass

Exploit Title: antMan and the password to a url-encoded linefeed %0a, we can force the authentication script to produce return values not anticipated by the developer. To exploit these defects, use a web proxy to intercept the login attempt and modify the POST parameters as follows:...

antMan 0.9.1a - Authentication Bypass

antMan 0.9.1a - Authentication Bypass Exploit Title: antMan and the password to a url-encoded linefeed %0a, we can force the authentication script to produce return values not anticipated by the developer. To exploit these defects, use a web proxy to intercept the login attempt and modify the POS...

Oracle WebLogic - wls-wsat Component Deserialization Remote Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle WebLogic wls-wsat Component Deserialization RCE', 'Description' = %q The Oracle WebLogic WLS WSAT Component is vulnerable to a XML...

Struts2 S2-045 Remote Command Execution

! /usr/bin/env python encoding:utf-8 import urllib2 import sys from poster.encode import multipartencode from poster.streaminghttp import registeropeners def poc: registeropeners datagen, header = multipartencode"image1": open"tmp.txt", "rb" header"User-Agent"="Mozilla/5.0 Macintosh; Intel Mac OS...

JXBrowser JavaScript-Java bridge in the RCE vulnerability-vulnerability warning-the black bar safety net

I recently was studying how to use JXBrowser to achieve a set of experimental scanning techniques. When I use JXBrowser library in the process, I suddenly thought, whether it can be by calling different classes to attack the JXBrowser client, and through a Web page to achieve remote code executio...