21 matches found
CVE-2026-8885
The DeMomentSomTres Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'callout' shortcode in all versions up to, and including, 1.1.1. This is due to insufficient input sanitization and output escaping on the 'width' and 'align' shortcode attributes...
HP Intelligent Management SOM Account Creation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP Intelligent Management SOM Account Creation', 'Description' = %q This module exploits a lack of authentication and access control in HP...
som-partner.de Cross Site Scripting vulnerability OBB-2717577
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2017-12555
A remote arbitrary file download and disclosure of information vulnerability in HPE Intelligent Management Center iMC Service Operation Management SOM version IMC SOM 7.3 E0501 was found...
Design/Logic Flaw
A remote arbitrary file download and disclosure of information vulnerability in HPE Intelligent Management Center iMC Service Operation Management SOM version IMC SOM 7.3 E0501 was found...
CVE-2017-12555
CVE-2017-12555 affects HPE Intelligent Management Center (iMC) SOM version IMC SOM 7.3 E0501. A remote attacker can download arbitrary files and disclose information due to a vulnerability in iMC SOM. Connected sources corroborate the issue across NVD and CNVD entries and related vulnerability no...
CVE-2017-5797
The CVE-2017-5797 entry concerns HP/ Hewlett Packard Enterprise Intelligent Management Center (IMC) SOM module, specifically the FileDownloadServlet. The issue is an information-disclosure vulnerability caused by improper validation of the user-supplied filePath parameter, enabling remote attacke...
HP Intelligent Management Center SOM Module filePath Information Disclosure
The HP Intelligent Management Center IMC application running on the remote host is affected by an information disclosure vulnerability in the included IMC Service Operation Management SOM module, specifically within the FileDownload servlet, due to improper validation of user-supplied input to th...
HP Intelligent Management Center SOM Module Information Disclosure
The HP Intelligent Management Center IMC application running on the remote host is affected by an information disclosure vulnerability in the included IMC Service Operation Management SOM Module, specifically within the FileDownload servlet, due to a failure to require authentication. An...
HP Intelligent Management Center SOM euAccountSerivce Authentication Bypass (CVE-2013-4824)
An authentication bypass vulnerability exists in the SOM add-in module of HP Intelligent Management Center...
HP Intelligent Management SOM Account Creation
This module exploits a lack of authentication and access control in HP Intelligent Management, specifically in the AccountService RpcServiceServlet from the SOM component, in order to create a SOM account with Account Management permissions. This module has been tested successfully on HP...
HP Intelligent Management SOM FileDownloadServlet Arbitrary Download
This module exploits a lack of authentication and access control in HP Intelligent Management, specifically in the FileDownloadServlet from the SOM component, in order to retrieve arbitrary files with SYSTEM privileges. This module has been tested successfully on HP Intelligent Management Center...
Hewlett-Packard Intelligent Management Center SOM euAccountService Servlet Authentication Bypass Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SOM's euAccountService servlet. No authentication is required to...
CVE-2013-4094
The Key Management feature in the SecureSphere Operations Manager SOM Management Server in Imperva SecureSphere 9.0.0.5 allows remote authenticated users to upload executable files via the 1 privatekey or 2 publickey parameter in a T/keyManagement request to plain/settings.html, as demonstrated b...
CVE-2013-4091
The SecureSphere Operations Manager SOM Management Server in Imperva SecureSphere 9.0.0.5 does not have an off autocomplete attribute for the password aka jpassword field on the secsphLogin.jsp login page, which makes it easier for remote attackers to obtain access by leveraging an unattended...
CVE-2013-4093
CVE-2013-4093 affects Imperva SecureSphere SOM 9.0.0.5 (Management Server). The vulnerability allows remote attackers to leak sensitive information through two paths: (1) direct access to dwr/call/plaincall/AsyncOperationsContainer.getOperationState.dwr reveals the installation path in s0.filePat...
CVE-2013-4092
The CVE-2013-4092 entry concerns Imperva SecureSphere SOM (Management Server) version 9.0.0.5. The issue enables context‑dependent attackers to obtain sensitive information by exploiting (1) a session ID in the jsessionid field to access secsphLogin.jsp or (2) credentials in the j_password parame...
CVE-2013-4095
Imperva SecureSphere SOM Management Server (v9.0.0.5) is affected by CVE-2013-4095. Remote authenticated users can execute arbitrary commands via a task payload using a [command].value field together with an [arguments].value field. The description is consistent across multiple sources (NVD/Red H...
CVE-2013-4091
Affected product: Imperva SecureSphere SOM Management Server (SOM) version 9.0.0.5. Vulnerability: The secsphLogin.jsp login page’s j_password field does not have an off autocomplete attribute, enabling password exposure on unattended workstations. Impact/Context: This condition can make it easie...
CVE-2013-4093
The SecureSphere Operations Manager SOM Management Server in Imperva SecureSphere 9.0.0.5 allows remote attackers to obtain sensitive information via 1 a direct request to dwr/call/plaincall/AsyncOperationsContainer.getOperationState.dwr, which reveals the installation path in the s0.filePath...