Exploit for Improper Verification of Cryptographic Signature in Pysaml2_Project Pysaml2

CVE-2021-21239 This is a poc script to explot the xmlsec vu...

EUVD-2017-1381

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2017-1000061

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xmlsec 1.2.23 and before is vulnerable to XML External Entity Expansion when parsing crafted input documents, resulting in possible information disclosure or...

com.cybersource:cybersource-sdk-java (>=6.2.12 <=6.2.13), com.github.zuinnote:hadoopoffice-flinkts_2.11 (>=1.6.3 <=1.6.4) +363 more potentially affected by CVE-2023-44483 via org.apache.santuario:xmlsec (>=2.3.0 <=2.3.3)

org.apache.santuario:xmlsec MAVEN version =2.3.0, =6.2.12, =1.6.3, =1.6.3, =1.6.3, =1.6.3, =2.1.0, =6.0.0, =5.1.4, =2021.11.24, =2021.11.24, =2021.11.24, =2021.11.24, =2021.11.24, =0.2.1, =0.2.15 and more Source cves: CVE-2023-44483 Source advisory: OSV:GHSA-XFRJ-6VVC-3XM2...

au.gov.nehta:clinical-document-packaging-library (=1.2.5), au.gov.nehta:common-library (>=1.1.1 <=1.2.1) +2199 more potentially affected by CVE-2023-44483 via org.apache.santuario:xmlsec (>=1.4.2 <=2.2.4)

org.apache.santuario:xmlsec MAVEN version =1.4.2, =1.1.1, =1.6.1, =1.1.7, =1.1.9, =1.2.5, =1.2.1, =1.3.5, =1.3.7 - cc.drx:poi2.13 =ee and more Source cves: CVE-2023-44483 Source advisory: OSV:GHSA-XFRJ-6VVC-3XM2...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : libxml2 vulnerabilities (USN-3739-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3739-1 advisory. Matias Brutti discovered that libxml2 incorrectly handled certain XML files. An attacker could possibly use this issue to expose...

ManageEngine ServiceDesk Plus < 14.0 Build 14004 RCE

A remote code execution vulnerability exists in ManageEngine ServiceDesk Plus prior to 14.0 Build 14004 due to use of Apache xmlsec aka XML Security for Java 1.4.1, because the xmlsec XSLT features, by design in that version, make the application responsible for certain security protections, and...

SUSE CVE-2016-9318

libxml2 2.9.4 and earlier, as used in XMLSec 1.2.23 and earlier and other products, does not offer a flag directly indicating that the current document may be read but other files may not be opened, which makes it easier for remote attackers to conduct XML External Entity XXE attacks via a crafte...

SUSE CVE-2017-1000061

xmlsec 1.2.23 and before is vulnerable to XML External Entity Expansion when parsing crafted input documents, resulting in possible information disclosure or denial of service...

CVE-2022-47966

Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to use of Apache Santuario xmlsec aka XML Security for Java 1.4.1, because the xmlsec XSLT features, by design in that version, make the application responsible for certain...

CVE-2022-47966

Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to use of Apache Santuario xmlsec aka XML Security for Java 1.4.1, because the xmlsec XSLT features, by design in that version, make the application responsible for certain...

CVE-2022-47966

Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to use of Apache Santuario xmlsec aka XML Security for Java 1.4.1, because the xmlsec XSLT features, by design in that version, make the application responsible for certain...

CVE-2022-47966

Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to use of Apache Santuario xmlsec aka XML Security for Java 1.4.1, because the xmlsec XSLT features, by design in that version, make the application responsible for certain...

Remote code execution

Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to use of Apache Santuario xmlsec aka XML Security for Java 1.4.1, because the xmlsec XSLT features, by design in that version, make the application responsible for certain...

CVE-2022-47966

Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to use of Apache Santuario xmlsec aka XML Security for Java 1.4.1, because the xmlsec XSLT features, by design in that version, make the application responsible for certain...

CVE-2022-47966

Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to use of Apache Santuario xmlsec aka XML Security for Java 1.4.1, because the xmlsec XSLT features, by design in that version, make the application responsible for certain...

多款ZOHO ManageEngine产品安全漏洞

ZOHO ManageEngine ADAudit Plus and ZOHO ManageEngine Access Manager Plus are both products of ZOHO, Inc. ZOHO ManageEngine ADAudit Plus is designed to simplify auditing, prove compliance and detect threats. zoho ManageEngine Access Manager Plus is a privileged session management solution for...

CVE-2022-47966

CVE-2022-47966 (ManageEngine products) is a pre-auth remote code execution vulnerability rooted in the Apache Santuario (XML Security for Java) 1.4.1 library. The XML signature processing in this version can bypass protections, enabling RCE when a SAML SSO flow is engaged by affected ManageEngine...

Exploit for Improper Input Validation in Zohocorp Manageengine_Access_Manager_Plus

CVE-2022-47966 POC for CVE-2022-47966 affecting the following...

SolarWinds Orion Secrets Dump

This module exports and decrypts credentials from SolarWinds Orion Network Performance Monitor NPM to a CSV file; it is intended as a post-exploitation module for Windows hosts with SolarWinds Orion NPM installed. The module supports decryption of AES-256, RSA, and XMLSEC secrets. Separate action...