Lucene search
K

886 matches found

NVD
NVD
added 2013/12/31 4:4 p.m.31 views

CVE-2013-6987

Multiple directory traversal vulnerabilities in the FileBrowser components in Synology DiskStation Manager DSM before 4.3-3810 Update 3 allow remote attackers to read, write, and delete arbitrary files via a .. dot dot in the 1 path parameter to filedelete.cgi or 2 folderpath parameter to...

7.5CVSS6.9AI score0.14885EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.21 views

Fedora 19 : ReviewBoard-1.7.11-1.fc19 (2013-11682)

New upstream release 1.7.11 - http://www.reviewboard.org/docs/releasenotes/reviewboa rd/1.7.11/ - Bug Fixes : - Fixed compatibility with Python 2.5 - Fixed the drop-down arrow by Support and the account name on older versions of Internet Explorer - New upstream release 1.7.10 -...

4.3CVSS5.4AI score0.02164EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.20 views

Fedora 18 : ReviewBoard-1.7.11-1.fc18 (2013-11646)

New upstream release 1.7.11 - http://www.reviewboard.org/docs/releasenotes/reviewboa rd/1.7.11/ - Bug Fixes : - Fixed compatibility with Python 2.5 - Fixed the drop-down arrow by Support and the account name on older versions of Internet Explorer - New upstream release 1.7.10 -...

4.3CVSS5.4AI score0.02164EPSS
Exploits1References5
Prion
Prion
added 2013/03/15 10:55 p.m.17 views

Cross site request forgery (csrf)

The Web API in the Statistics Server in TIBCO Spotfire Statistics Services 3.3.x before 3.3.1, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 allows remote attackers to obtain sensitive information via an unspecified HTTP request...

5CVSS6.8AI score0.02049EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2013/03/15 10:55 p.m.16 views

CVE-2013-2371

The Web API in the Statistics Server in TIBCO Spotfire Statistics Services 3.3.x before 3.3.1, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 allows remote attackers to obtain sensitive information via an unspecified HTTP request...

5CVSS6.2AI score0.02049EPSS
Exploits0References3
Cvelist
Cvelist
added 2013/03/15 2:0 p.m.24 views

CVE-2013-2371

The Web API in the Statistics Server in TIBCO Spotfire Statistics Services 3.3.x before 3.3.1, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 allows remote attackers to obtain sensitive information via an unspecified HTTP request...

6.2AI score0.02049EPSS
Exploits0References3
CVE
CVE
added 2013/03/15 2:0 p.m.38 views

CVE-2013-2371

The CVE-2013-2371 entry relates to the Web API in the Statistics Server of TIBCO Spotfire Statistics Services. Affected versions include 3.3.x prior to 3.3.1, 4.5.x prior to 4.5.1, and 5.0.x prior to 5.0.1. The vulnerability allows remote attackers to obtain sensitive information via an unspecifi...

5CVSS6.4AI score0.02049EPSS
Exploits0References3Affected Software1
Metasploit
Metasploit
added 2012/02/16 8:19 a.m.12 views

VMWare Enumerate Permissions

This module will log into the Web API of VMWare and try to enumerate all the user/group permissions. Unlike enum users this is only users and groups that specifically have permissions defined within the VMware product This module requires Metasploit: https://metasploit.com/download Current source...

7.2AI score
Exploits0
Metasploit
Metasploit
added 2012/02/16 6:45 a.m.14 views

VMWare Tag Virtual Machine

This module will log into the Web API of VMWare and 'tag' a specified Virtual Machine. It does this by logging a user event with user supplied text This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModul...

Exploits0
Metasploit
Metasploit
added 2012/02/16 4:55 a.m.20 views

VMWare Enumerate User Accounts

This module will log into the Web API of VMWare and try to enumerate all the user accounts. If the VMware instance is connected to one or more domains, it will try to enumerate domain users as well. This module requires Metasploit: https://metasploit.com/download Current source:...

0.5AI score
Exploits0
Metasploit
Metasploit
added 2012/02/16 3:25 a.m.32 views

VMWare ESX/ESXi Fingerprint Scanner

This module accesses the web API interfaces for VMware ESX/ESXi servers and attempts to identify version information for that server. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VMWare...

6.9AI score
Exploits0
Metasploit
Metasploit
added 2012/02/15 10:47 p.m.21 views

VMWare Terminate ESX Login Sessions

This module will log into the Web API of VMWare and try to terminate user login sessions as specified by the session keys. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VMWare Terminate ESX...

0.6AI score
Exploits0
Metasploit
Metasploit
added 2012/02/15 8:27 a.m.8 views

VMWare Enumerate Active Sessions

This module will log into the Web API of VMWare and try to enumerate all the login sessions. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VMWare Enumerate Active Sessions', 'Description' = %...

7.3AI score
Exploits0
Metasploit
Metasploit
added 2012/02/15 2:52 a.m.13 views

VMWare Power Off Virtual Machine

This module will log into the Web API of VMWare and try to power off a specified Virtual Machine. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VMWare Power Off Virtual Machine', 'Description...

Exploits0
Metasploit
Metasploit
added 2012/02/15 2:44 a.m.13 views

VMWare Power On Virtual Machine

This module will log into the Web API of VMWare and try to power on a specified Virtual Machine. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VMWare Power On Virtual Machine', 'Description' ...

Exploits0
Metasploit
Metasploit
added 2012/02/01 6:5 p.m.13 views

VMWare Enumerate Host Details

This module attempts to enumerate information about the host systems through the VMWare web API. This can include information about the hardware installed on the host machine. This module requires Metasploit: https://metasploit.com/download Current source:...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2011/12/15 12:0 a.m.50 views

Splunk - Remote Command Execution

from sec1httplib.requestbuilder import Requestobj from sec1httplib.threaddispatcher import import threading import re import urlparse import sys import urllib import base64 from optparse import OptionParser import sys """ Source: http://www.sec-1.com/blog/?p=233 Splunk remote root exploit. Author...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2011/03/14 5:37 p.m.11 views

Seccubus 2.0.alpha1 released, Download Now !

So what is the difference between Seccubus V2 and Seccubus V2 ? Before you try something new you want to know if it is going to be worth it. This article should give you an idea of why we spend quite a lot of time and energy in rebuilding Seccubus V2 from scratch. I clearly recall the conversatio...

6.8AI score
Exploits0
myhack58
myhack58
added 2008/12/01 12:0 a.m.16 views

JSON Hijacking of use as well as Web API security-vulnerability warning-the black bar safety net

by:cosine JSON Hijacking what role, as a black brother said, You can CSRF to give the user privacy data: a. The principle of the last presentation, first take a attack example, take the meal to do an experiment. First of all, we see this:http://help.fanfou.com/api.html. Rice no API. Wherein:...

7.3AI score
Exploits0
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.22 views

Update Rollup 1 for System Center 2022 Orchestrator

None None...

5.8AI score
Exploits0
Rows per page
Query Builder