Progress OpenEdge 安全漏洞

Progress OpenEdge is an enterprise-level application development and database management platform provided by the American company Progress. There is a security vulnerability in Progress OpenEdge, which stems from improper authorization in the AdminServer component. This vulnerability could allow...

Progress OpenEdge 安全漏洞

Progress OpenEdge is an enterprise-level application development and database management platform provided by the American company Progress. There is a security vulnerability in Progress OpenEdge, which stems from the weak encryption strength of the OECH1 prefix encoding. This vulnerability may...

CVE-2023-40052

This issue affects Progress Application Server PAS for OpenEdge in versions 11.7 prior to 11.7.18, 12.2 prior to 12.2.13, and innovation releases prior to 12.8.0 . An attacker who can produce a malformed web request may cause the crash of a PASOE agent potentially disrupting the thread activities...

Progress Software OpenEdge 命令注入漏洞

Progress Software OpenEdge is a suite of integrated development environments IDEs from Progress Software, USA. A command injection vulnerability exists in Progress Software OpenEdge that stems from insufficient input validation of the Java RMI interface, which could lead to a remote command...

Progress OpenEdge Installed (Linux)

Binary data progressopenedgenixinstalled.nbin...

Progress Software OpenEdge 安全漏洞

Progress Software OpenEdge is a suite of integrated development environments IDEs from Progress Software, USA. A security vulnerability exists in Progress Software OpenEdge versions 11.7.18 and 12.2.13. An attacker can exploit the vulnerability to inject unauthorized code into a multi-session age...

Progress OpenEdge Installed (Windows)

Binary data progressopenedgewininstalled.nbin...

Exploit for Authentication Bypass by Primary Weakness in Progress Openedge

CVE-2024-1403 Progress OpenEdge Authentication Bypass An explo...

CVE-2023-40051

This issue affects Progress Application Server PAS for OpenEdge in versions 11.7 prior to 11.7.18, 12.2 prior to 12.2.13, and innovation releases prior to 12.8.0. An attacker can formulate a request for a WEB transport that allows unintended file uploads to a server directory path on the system...

Progress Software OpenEdge Code Issue Vulnerability

Progress Software OpenEdge is a suite of integrated development environments IDEs from the US-based Progress Software. A security vulnerability exists in Progress Software OpenEdge version 11.7 through 11.7.18 and version 12.2 through 12.2.13. An attacker could exploit this vulnerability to...

Progress OpenEdge 注入漏洞

Progress OpenEdge is an application. A security vulnerability exists in Progress OpenEdge LTS versions prior to 11.7.16, 12.x through 12.2.12, and 12.3.x through 12.6.x. The vulnerability stems from a URL injection attack that can be executed by a remote user to change identity or role membership...

Progress OpenEdge权限许可和访问控制问题漏洞

Progress OpenEdge is an application. A privilege-granting and access-control issue vulnerability exists in Progress OpenEdge versions prior to 11.7.14 and versions 12.x through 12.2.9, which stems from the vulnerability to privilege escalation of certain SUID binaries in the OpenEdge application....

CVE-2022-29849

In Progress OpenEdge before 11.7.14 and 12.x before 12.2.9, certain SUID binaries within the OpenEdge application were susceptible to privilege escalation. If exploited, a local attacker could elevate their privileges and compromise the affected system...

Progress OpenEdge 11.2 - Directory Traversal

No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register class TestPOCPOCBase: vulID = 'SSV-87398' vul ID version = '1' author = 'fenghh' vulDate = '2014-10-31' createDate =...

Progress OpenEdge 11.2 Directory Traversal

Exploit Title: Progress OpenEdge Directory Traversal Date: 30/10/2014 Exploit Author: Mauricio Correa Vendor Homepage: www.progress.com Software Link: www.progress.com/products/openedge Version: 11.2 Tested on: Windows OS CVE : CVE-2014-8555 The malicious user sends a malformed request that...

Progress OpenEdge 11.2 - Directory Traversal Vulnerability

Exploit for php platform in category web applications Exploit Title: Progress OpenEdge Directory Traversal Date: 30/10/2014 Exploit Author: Mauricio Correa Vendor Homepage: www.progress.com Software Link: www.progress.com/products/openedge Version: 11.2 Tested on: Windows OS CVE : CVE-2014-8555 T...

Progress OpenEdge 11.2 - Directory Traversal

Progress OpenEdge 11.2 - Directory Traversal...

Progress OpenEdge 11.2 - Directory Traversal

Exploit Title: Progress OpenEdge Directory Traversal Date: 30/10/2014 Exploit Author: Mauricio Correa Vendor Homepage: www.progress.com Software Link: www.progress.com/products/openedge Version: 11.2 Tested on: Windows OS CVE : CVE-2014-8555 The malicious user sends a malformed request that...

[DSECRG-11-008] Open Edge RDBMS - Multiple architecture vulnerabilities (UNPATCHED)

Digital Security Research Group DSecRG Advisory DSECRG-11-008 Application: Progress OpenEdge Enterprise RDBMS Versions Affected: 10.2A and maybe others Vendor URL: http://web.progress.com Bug: Authentication bypass, UserID enumerate Exploits: YES Reported: 13.10.2009 Vendor response: 13.10.2009...