The vulnerability in the web interface of BMC IPMI Supermicro X11 servers exists due to the lack of protective measures for the web page structure. This allows attackers to execute XSS attacks.

The vulnerability in the web interface of BMC IPMI Supermicro X11 series servers exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks using specially crafted GET requests...

Sn1per v5.0 - Automated Pentest Recon Scanner

Sn1per Community Edition is an automated scanner that can be used during a penetration test to enumerate and scan for vulnerabilities. Sn1per Professional is Xero Security's premium reporting addon for Professional Penetration Testers, Bug Bounty Researchers and Corporate Security teams to manage...

X11 Keyboard Command Injection

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "\x0a", '2' = "\x0b", '3' = "\x0c", '4' = "\x0d", '5' = "\x0e", '6' = "\x0f", '7' = "\x10", '&' = "\x10", '8' = "\x11", '9' = "\x12",...

X11 No-Auth Scanner

This module scans for X11 servers that allow anyone to connect without authentication. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'X11 No-Auth Scanner', 'Description' = %q This module scans...