Lucene search
+L

168 matches found

exploitpack
exploitpack
added 2017/11/03 12:0 a.m.46 views

Ladon Framework for Python 0.9.40 - XML External Entity Expansion

Ladon Framework for Python 0.9.40 - XML External Entity Expansion Advisory: XML External Entity Expansion in Ladon Webservice Attackers who can send SOAP messages to a Ladon webservice via the HTTP interface of the Ladon webservice can exploit an XML external entity expansion vulnerability and re...

Exploits0
0day.today
0day.today
added 2017/08/23 12:0 a.m.37 views

WebClientPrint Processor 2.0.15.109 Updates Remote Code Execution Vulnerability

RedTeam Pentesting discovered that rogue updates trigger a remote code execution vulnerability in WebClientPrint Processor WCPP. These updates may be distributed through specially crafted websites and are processed without any user interaction as soon as the website is accessed. However, the...

0.3AI score
Exploits0
0day.today
0day.today
added 2017/08/23 12:0 a.m.47 views

WebClientPrint Processor 2.0.15.109 TLS Validation Vulnerability

RedTeam Pentesting discovered that WebClientPrint Processor WCPP does not validate TLS certificates when initiating HTTPS connections. Thus, a man-in-the-middle attacker may intercept and/or modify HTTPS traffic in transit. This may result in a disclosure of sensitive information and the integrit...

6.4AI score
Exploits0
Packet Storm
Packet Storm
added 2017/08/23 12:0 a.m.71 views

WebClientPrint Processor 2.0.15.109 Updates Remote Code Execution

Advisory: WebClientPrint Processor 2.0: Remote Code Execution via Updates RedTeam Pentesting discovered that rogue updates trigger a remote code execution vulnerability in WebClientPrint Processor WCPP. These updates may be distributed through specially crafted websites and are processed without...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2017/08/23 12:0 a.m.113 views

WebClientPrint Processor 2.0.15.109 Unauthorized Proxy Modification

Advisory: WebClientPrint Processor 2.0: Unauthorised Proxy Modification RedTeam Pentesting discovered that attackers can configure a proxy host and port to be used when fetching print jobs with WebClientPrint Processor WCPP. This proxy setting may be distributed via specially crafted websites and...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2017/08/23 12:0 a.m.122 views

WebClientPrint Processor 2.0.15.190 Print Jobs Remote Code Execution

Advisory: WebClientPrint Processor 2.0: Remote Code Execution via Print Jobs RedTeam Pentesting discovered that malicious print jobs can be used to trigger a remote code execution vulnerability in WebClientPrint Processor WCPP. These print jobs may be distributed via specially crafted websites an...

0.1AI score
Exploits0
0day.today
0day.today
added 2017/08/23 12:0 a.m.73 views

WebClientPrint Processor 2.0.15.190 Print Jobs Remote Code Execution Vulnerability

WebClientPrint Processor version 2.0.15.109 suffers from a remote code execution vulnerability via print jobs. Advisory: WebClientPrint Processor 2.0: Remote Code Execution via Print Jobs RedTeam Pentesting discovered that malicious print jobs can be used to trigger a remote code execution...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2017/07/24 12:0 a.m.53 views

REDDOXX Appliance Session Identifier Extraction

Advisory: Unauthenticated Extraction of Session-IDs in REDDOXX Appliance RedTeam Pentesting discovered an information disclosure vulnerabilty in the REDDOXX appliance software, which allows unauthenticated attackers to extract valid session IDs. Details ======= Product: REDDOXX Appliance Affected...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2016/12/23 12:0 a.m.1416 views

Apache mod_session_crypt 2.5 Padding Oracle

Advisory: Padding Oracle in Apache modsessioncrypto During a penetration test, RedTeam Pentesting discovered a Padding Oracle vulnerability in modsessioncrypto of the Apache web server. This vulnerability can be exploited to decrypt the session data and even encrypt attacker-specified data. Detai...

7.8AI score0.49024EPSS
Exploits4
exploitpack
exploitpack
added 2016/12/23 12:0 a.m.1497 views

Apache mod_session_crypto - Padding Oracle

Apache modsessioncrypto - Padding Oracle ''' Advisory: Padding Oracle in Apache modsessioncrypto During a penetration test, RedTeam Pentesting discovered a Padding Oracle vulnerability in modsessioncrypto of the Apache web server. This vulnerability can be exploited to decrypt the session data an...

5CVSS7.8AI score0.49024EPSS
Exploits4
Exploit DB
Exploit DB
added 2016/06/02 12:0 a.m.58 views

Websockify (C Implementation) 0.8.0 - Buffer Overflow (PoC)

Advisory: Websockify: Remote Code Execution via Buffer Overflow RedTeam Pentesting discovered a buffer overflow vulnerability in the C implementation of Websockify, which allows attackers to execute arbitrary code. Details ======= Product: Websockify C implementation Affected Versions: all versio...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2016/06/02 12:0 a.m.32 views

Websockify (C Implementation) 0.8.0 - Buffer Overflow (PoC)

Websockify C Implementation 0.8.0 - Buffer Overflow PoC Advisory: Websockify: Remote Code Execution via Buffer Overflow RedTeam Pentesting discovered a buffer overflow vulnerability in the C implementation of Websockify, which allows attackers to execute arbitrary code. Details ======= Product:...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2016/05/31 12:0 a.m.64 views

Paessler PRTG Network Monitor 14.4.12.3282 XXE Injection

Advisory: XML External Entity Expansion in Paessler PRTG Network Monitor Authenticated users who can create new HTTP XML/REST Value sensors in PRTG Network Monitor can read local files on the PRTG host system via XML external entity expansion. Details ======= Product: Paessler PRTG Network Monito...

6.6AI score0.01326EPSS
Exploits2
Packet Storm
Packet Storm
added 2016/03/22 12:0 a.m.61 views

Securimage 3.6.2 Cross Site Scripting

Advisory: Cross-site Scripting in Securimage 3.6.2 RedTeam Pentesting discovered a cross-site scripting XSS vulnerability in the Securimage CAPTCHA software, which allows attackers to inject arbitrary JavaScript code via a crafted URL. Details ======= Product: Securimage Affected Versions: = 3.2R...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2015/12/22 12:0 a.m.52 views

Symfony PHP Framework Session Fixation

Advisory: Symfony PHP Framework: Session Fixation In "Remember Me" Login Functionality A session fixation vulnerability within the Symfony web application framework's "Remember Me" login functionality allows an attacker to impersonate the victim towards the web application if the session ID value...

7.4AI score0.02712EPSS
Exploits1
Symfony
Symfony
added 2015/11/23 12:0 a.m.25 views

CVE-2015-8124: Session Fixation in the "Remember Me" Login Feature

Affected Versions Symfony 2.3.0 to 2.3.34, 2.6.0 - 2.6.11, 2.7.0 - 2.7.6 versions of the Security component are affected by this security issue. This issue has been fixed in Symfony 2.3.35, 2.6.12, and 2.7.7. Note that no fixes are provided for Symfony 2.4 and 2.5 as they are not maintained...

6.8CVSS5.8AI score0.02712EPSS
Exploits1
seebug.org
seebug.org
added 2015/09/10 12:0 a.m.41 views

ZyXEL ZyWALL USG client side authorization config disclosure

Details ======= Product: ZyXEL USG Unified Security Gateway appliances ZyWALL USG-20 ZyWALL USG-20W ZyWALL USG-50 ZyWALL USG-100 ZyWALL USG-200 ZyWALL USG-300 ZyWALL USG-1000 ZyWALL USG-1050 ZyWALL USG-2000 Possibly other ZLD-based products Affected Versions: Firmware Releases before April 25, 20...

6.4AI score
Exploits0
exploitpack
exploitpack
added 2015/06/16 12:0 a.m.69 views

TYPO3 Extension Akronymmanager 0.5.0 - SQL Injection

TYPO3 Extension Akronymmanager 0.5.0 - SQL Injection Advisory: SQL Injection in TYPO3 Extension Akronymmanager An SQL injection vulnerability in the TYPO3 extension "Akronymmanager" allows authenticated attackers to inject SQL statements and thereby read data from the TYPO3 database. Details...

6CVSS0.2AI score0.03157EPSS
Exploits5
exploitpack
exploitpack
added 2015/06/10 12:0 a.m.68 views

Alcatel-Lucent OmniSwitch - Cross-Site Request Forgery

Alcatel-Lucent OmniSwitch - Cross-Site Request Forgery Advisory: Alcatel-Lucent OmniSwitch Web Interface Cross-Site Request Forgery During a penetration test, RedTeam Pentesting discovered a vulnerability in the management web interface of an Alcatel-Lucent OmniSwitch 6450. The management web...

6.8CVSS0.6AI score0.03048EPSS
Exploits5
Packet Storm
Packet Storm
added 2015/06/10 12:0 a.m.74 views

Alcatel-Lucent OmniSwitch Web Interface Weak Session ID

Advisory: Alcatel-Lucent OmniSwitch Web Interface Weak Session ID During a penetration test, RedTeam Pentesting discovered a vulnerability in the management web interface of an Alcatel-Lucent OmniSwitch 6450. This interface uses easily guessable session IDs, which allows attackers to authenticate...

4.3CVSS6.7AI score0.02026EPSS
Exploits3
Rows per page
Query Builder