45 matches found
Idera Up.Time Monitoring Station 7.0 - 'post2file.php' Arbitrary File Upload (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Idera Up.Time Monitoring Station 7.0 post2file.php Arbitrary File Upload', 'Description' = %q This module exploits an arbitrary file...
Idera Up.Time Monitoring Station 7.0 post2file.php Arbitrary File Upload Exploit
This Metasploit module exploits an arbitrary file upload vulnerability found within the Up.Time monitoring server 7.2 and below. A malicious entity can upload a PHP file into the webroot without authentication, leading to arbitrary code execution. Although the vendor fixed Up.Time to prevent this...
Idera Up.Time Monitoring Station 7.0 post2file.php Arbitrary File Upload Version 1
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Idera Up.Time Monitoring Station 7.0 post2file.php Arbitrary File Upload', 'Description' = %q This module exploits an arbitrary file...
Idera Up.Time Monitoring Station 7.4 post2file.php Arbitrary File Upload Version 2
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'nokogiri' class Metasploit4 'Idera Up.Time Monitoring Station 7.4 post2file.php Arbitrary File Upload', 'Description' = %q This module exploit...
Idera Up.Time Monitoring Station 7.0 post2file.php Arbitrary File Upload
This module exploits an arbitrary file upload vulnerability found within the Up.Time monitoring server 7.2 and below. A malicious entity can upload a PHP file into the webroot without authentication, leading to arbitrary code execution. Although the vendor fixed Up.Time to prevent this...
Idera Up.Time Monitoring Station 7.4 post2file.php Arbitrary File Upload
This module exploits a vulnerability found in Uptime version 7.4.0 and 7.5.0. The vulnerability began as a classic arbitrary file upload vulnerability in post2file.php, which can be exploited by exploits/multi/http/uptimefileupload1.rb, but it was mitigated by the vendor. Although the mitigation ...
up.time 7.5.0 Superadmin Privilege Escalation
up.time 7.5.0 Superadmin Privilege Escalation Exploit Vendor: Idera Inc. Product web page: http://www.uptimesoftware.com Affected version: 7.5.0 build 16 and 7.4.0 build 13 Summary: The next-generation of IT monitoring software. Desc: up.time suffers from a privilege escalation issue. Normal user...
up.time 7.5.0 Arbitrary File Disclose / Delete
up.time 7.5.0 Arbitrary File Disclose And Delete Exploit Vendor: Idera Inc. Product web page: http://www.uptimesoftware.com Affected version: 7.5.0 build 16 and 7.4.0 build 13 Summary: The next-generation of IT monitoring software. Desc: Input passed to the 'filename' parameter in 'get2post.php'...
up.time 7.5.0 XSS And CSRF Add Admin Exploit
Exploit for php platform in category web applications up.time 7.5.0 XSS And CSRF Add Admin Exploit Vendor: Idera Inc. Product web page: http://www.uptimesoftware.com Affected version: 7.5.0 build 16 and 7.4.0 build 13 Summary: The next-generation of IT monitoring software. Desc: The application...
up.time 7.5.0 - Upload and Execute
up.time 7.5.0 - Upload and Execute up.time 7.5.0 Upload And Execute File Exploit Vendor: Idera Inc. Product web page: http://www.uptimesoftware.com Affected version: 7.5.0 build 16 and 7.4.0 build 13 Summary: The next-generation of IT monitoring software. Desc: up.time suffers from arbitrary...
up.time 7.5.0 - Cross-Site Scripting Cross-Site Request Forgery (Add Admin)
up.time 7.5.0 - Cross-Site Scripting Cross-Site Request Forgery Add Admin up.time 7.5.0 XSS And CSRF Add Admin Exploit Vendor: Idera Inc. Product web page: http://www.uptimesoftware.com Affected version: 7.5.0 build 16 and 7.4.0 build 13 Summary: The next-generation of IT monitoring software...
up.time 7.5.0 Superadmin Privilege Escalation Exploit
Summary The next-generation of IT monitoring software. Description up.time suffers from a privilege escalation issue. Normal user can elevate his/her privileges by sending a POST request seting the parameter 'userroleid' to 1. Attacker can exploit this issue using also cross-site request forgery...
up.time 7.5.0 - Arbitrary File Disclose and Delete
up.time 7.5.0 - Arbitrary File Disclose and Delete up.time 7.5.0 Arbitrary File Disclose And Delete Exploit Vendor: Idera Inc. Product web page: http://www.uptimesoftware.com Affected version: 7.5.0 build 16 and 7.4.0 build 13 Summary: The next-generation of IT monitoring software. Desc: Input...
up.time 7.5.0 - Arbitrary File Disclose and Delete
up.time 7.5.0 Arbitrary File Disclose And Delete Exploit Vendor: Idera Inc. Product web page: http://www.uptimesoftware.com Affected version: 7.5.0 build 16 and 7.4.0 build 13 Summary: The next-generation of IT monitoring software. Desc: Input passed to the 'filename' parameter in 'get2post.php'...
up.time 7.5.0 - Upload and Execute
up.time 7.5.0 Upload And Execute File Exploit Vendor: Idera Inc. Product web page: http://www.uptimesoftware.com Affected version: 7.5.0 build 16 and 7.4.0 build 13 Summary: The next-generation of IT monitoring software. Desc: up.time suffers from arbitrary command execution. Attackers can...
up.time 7.5.0 - Superadmin Privilege Escalation
input...
Uptime Agent 5.0.1 - Stack Overflow Vulnerability
No description provided by source. Exploit Title: Up.Time Agent 5.0.1 Stack Overflow Date: 28/11/2013 Exploit Author: Denis Andzakovic Vendor Homepage: http://www.uptimesoftware.com/ Version: 5.0.1 Tested on: Debian 7 Kernel 3.2.0, Kali Kernel 3.7 , , . '.' '. ', . , '. , .', , / / / \ \ ==/ /\ ...
Up.Time Monitoring Station post2file.php Arbitrary File Upload
This Metasploit module exploits an arbitrary file upload vulnerability found within the Up.Time monitoring server 7.2 and below. A malicious entity can upload a PHP file into the webroot without authentication, leading to arbitrary code execution. This module requires Metasploit:...
Up.Time Monitoring Station post2file.php Arbitrary File Upload
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Up.Time Monitoring Station post2file.php Arbitrary File Upload', 'Description' = %q This module exploits an arbitrary file upload...
Uptime Agent 5.0.1 - Stack Overflow
Exploit Title: Up.Time Agent 5.0.1 Stack Overflow Date: 28/11/2013 Exploit Author: Denis Andzakovic Vendor Homepage: http://www.uptimesoftware.com/ Version: 5.0.1 Tested on: Debian 7 Kernel 3.2.0, Kali Kernel 3.7 , , . '.' '. ', . , '. , .', , / / / \ \ ==/ /\ \ / / \ / \ / / | \ \ Y Y \ / /|...