EUVD-2015-9105

Malware in sbrugna...

EUVD-2025-21749

Malicious code in bioql PyPI...

CVE-2025-34121

An unauthenticated arbitrary file upload vulnerability exists in Idera Up.Time Monitoring Station versions up to and including 7.2. The wizards/post2file.php script accepts arbitrary POST parameters, allowing attackers to upload crafted PHP files to the webroot. Successful exploitation results in...

CVE-2025-34121

An unauthenticated arbitrary file upload vulnerability exists in Idera Up.Time Monitoring Station versions up to and including 7.2. The wizards/post2file.php script accepts arbitrary POST parameters, allowing attackers to upload crafted PHP files to the webroot. Successful exploitation results in...

CVE-2025-34121 Idera Up.Time ≤ 7.2 post2file.php Arbitrary File Upload RCE

An unauthenticated arbitrary file upload vulnerability exists in Idera Up.Time Monitoring Station versions up to and including 7.2. The wizards/post2file.php script accepts arbitrary POST parameters, allowing attackers to upload crafted PHP files to the webroot. Successful exploitation results in...

CVE-2025-34121

Idera Up.Time Monitoring Station

CVE-2025-34121 Idera Up.Time ≤ 7.2 post2file.php Arbitrary File Upload RCE

An unauthenticated arbitrary file upload vulnerability exists in Idera Up.Time Monitoring Station versions up to and including 7.2. The wizards/post2file.php script accepts arbitrary POST parameters, allowing attackers to upload crafted PHP files to the webroot. Successful exploitation results in...

PT-2025-29884 · Idera · Idera Up.Time Monitoring Station

Name of the Vulnerable Software and Affected Versions: Idera Up.Time Monitoring Station versions up to and including 7.2 Description: An unauthenticated arbitrary file upload issue exists. The wizards/post2file.php script accepts arbitrary POST parameters, allowing attackers to upload crafted PHP...

Idera Up.time Monitoring Station Arbitrary File Upload Vulnerability

Idera Up.time Monitoring Station is a cross-platform server monitoring software from Idera. The software provides the server performance, availability and other indicators to collect, summarize and generate reports and other functions. An arbitrary file upload vulnerability exists in the...

Design/Logic Flaw

An issue was discovered in post2file.php in Up.Time Monitoring Station 7.5.0 build 16 and 7.4.0 build 13. It allows an attacker to upload an arbitrary file, such as a .php file that can execute arbitrary OS commands...

CVE-2015-9263

An issue was discovered in post2file.php in Up.Time Monitoring Station 7.5.0 build 16 and 7.4.0 build 13. It allows an attacker to upload an arbitrary file, such as a .php file that can execute arbitrary OS commands...

CVE-2015-9263

An issue was discovered in post2file.php in Up.Time Monitoring Station 7.5.0 build 16 and 7.4.0 build 13. It allows an attacker to upload an arbitrary file, such as a .php file that can execute arbitrary OS commands...

CVE-2015-9263

The CVE-2015-9263 entry concerns Idera Up.Time Monitoring Station (versions up to 7.5.0 build 16 and 7.4.0 build 13) where the post2file.php upload mechanism allows uploading arbitrary files (e.g., PHP) to the webroot. The underlying issue is an unauthenticated arbitrary file upload that can lead...

PT-2018-4572 · Uptime · Up.Time Monitoring Station

Name of the Vulnerable Software and Affected Versions: Up.Time Monitoring Station versions 7.4.0 build 13 through 7.5.0 build 16 Description: An issue in post2file.php allows an attacker to upload arbitrary files, including .php files that can execute arbitrary OS commands. Recommendations: For...

Idera Up.time Agent Information Disclosure Vulnerability

Idera Up.time Agent is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Idera Up.time client for Linux Arbitrary File Read Vulnerability

Idera Up.time client for Linux is a server performance monitoring software client for Linux-based platforms. An arbitrary file read vulnerability exists in Idera Up.time client for Linux, which can be exploited by remote attackers to submit a special request to read an arbitrary file...

Up.time agent for Linux does not authenticate a user before allowing read access to the file system

Overview The up.time agent for Linux versions 7.5 and 7.6 may allow an unauthenticated remote attacker to read arbitrary files from a system. Description CWE-306: Missing Authentication for Critical Function - CVE-2015-8268According to the researcher, "The linux based uptime.agent version 7.5...

Idera Up.time agent for Windows formatting string vulnerability

Idera Up.time client for Windows is a Windows-based infrastructure performance monitoring software client from Idera Corporation. A formatting string vulnerability exists in Idera Up.time client for Windows versions 6.0 and 7.2. A remote attacker can exploit this vulnerability by sending a...

Idera Up.time agent for Windows Information Disclosure Vulnerability

Idera Up.time client for Windows is a Windows-based infrastructure performance monitoring software client from Idera Corporation. An information disclosure vulnerability exists in Idera Up.time client for Windows 7.6 and earlier. A remote attacker can exploit this vulnerability by sending built-i...

Idera Up.Time Monitoring Station 7.4 - 'post2file.php' Arbitrary File Upload (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'nokogiri' class Metasploit4 'Idera Up.Time Monitoring Station 7.4 post2file.php Arbitrary File Upload', 'Description' = %q This module exploit...