37 matches found
EUVD-2013-7250
Malware in sbrugna...
EUVD-2007-0964
Malware in sbrugna...
EUVD-2007-0963
Malware in sbrugna...
CVE-2013-10037
An OS command injection vulnerability exists in WebTester version 5.x via the install2.php installation script. The parameters cpusername, cppassword, and cpdomain are passed directly to shell commands without sanitization. A remote unauthenticated attacker can exploit this flaw by sending a...
CVE-2013-10037
An OS command injection vulnerability exists in WebTester version 5.x via the install2.php installation script. The parameters cpusername, cppassword, and cpdomain are passed directly to shell commands without sanitization. A remote unauthenticated attacker can exploit this flaw by sending a...
CVE-2013-10037 WebTester 5.x install2.php Unauthenticated Command Execution
An OS command injection vulnerability exists in WebTester version 5.x via the install2.php installation script. The parameters cpusername, cppassword, and cpdomain are passed directly to shell commands without sanitization. A remote unauthenticated attacker can exploit this flaw by sending a...
CVE-2013-10037 WebTester 5.x install2.php Unauthenticated Command Execution
An OS command injection vulnerability exists in WebTester version 5.x via the install2.php installation script. The parameters cpusername, cppassword, and cpdomain are passed directly to shell commands without sanitization. A remote unauthenticated attacker can exploit this flaw by sending a...
CVE-2013-10037
CVE-2013-10037 affects WebTester 5.x installed via install2.php. The cpusername, cppassword, and cpdomain parameters are passed directly to shell commands without sanitization, enabling remote unauthenticated command execution with web server privileges. Public references discuss existing exploit...
CVE-2013-10037
An OS command injection vulnerability exists in WebTester version 5.x via the install2.php installation script. The parameters cpusername, cppassword, and cpdomain are passed directly to shell commands without sanitization. A remote unauthenticated attacker can exploit this flaw by sending a...
PT-2025-31535 · Undefined · Undefined
An OS command injection vulnerability exists in WebTester version 5.x via the install2.php installation script. The parameters cpusername, cppassword, and cpdomain are passed directly to shell commands without sanitization. A remote unauthenticated attacker can exploit this flaw by sending a...
Eppler Software WebTester 安全漏洞
Eppler Software WebTester is an online exam and quiz platform from Eppler Software. A security vulnerability exists in Eppler Software WebTester version 5.x. The vulnerability stems from a failure to clean up user input in the install2.php script, which could lead to remote command execution...
CVE-2013-10037
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/webtesterexec.rb 2025-10-23 21:12:57+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...
WebTester 5.0.20060927 directions.php typeID Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/22559/info WebTester is prone to multiple input-validation issues, including multiple cross-site scripting and multiple SQL-injection issues, because the application fails to properly sanitize user-supplied input. A...
WebTester 5.x Command Execution
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient def...
WebTester 5.x - Multiple Vulnerabilities
No description provided by source...
Eppler Software WebTester install2.php Script Command Execution
A command execution vulnerability has been reported in Eppler Software WebTester 5.x. The vulnerability is due to insufficient validation of the 'cpusername', 'cppassword' and 'cpdomain' parameters provided by the user. A remote unauthenticated attacker could exploit this vulnerability by sending...
WebTester 5.x Multiple Vulnerabilities
========================================================================================== WebTester 5.x Multiple Vulnerabilities ==========================================================================================...
WebTester 5.x Command Execution Vulnerability
Exploit for unix platform in category remote exploits This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "WebTester 5.x Command Execution", 'Description' = %q This module exploits a...
WebTester 5.x - Command Execution (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "WebTester 5.x Command Execution", 'Description' = %q This module exploits a command execution vulnerability in WebTester version 5.x...
WebTester 5.x Command Execution
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "WebTester 5.x Command Execution", 'Description' = %q This module exploits a command execution vulnerability in WebTester version 5.x...