Twenty Year Anniversary
Showing 1 - 25 of 38 RSS Feed

Files from Vahagn Vardanyan

First Active2015-06-11
Last Active2018-03-14
SAP NetWeaver AS JAVA CRM Log Injection Remote Command Execution
Posted Mar 14, 2018
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA CRM log injection remote command execution exploit.

tags | exploit, java, remote
advisories | CVE-2018-2380
MD5 | 426c32cc9743c586acb60e5d9860dec9
Hardcore SAP Penetration Testing
Posted Jan 24, 2018
Authored by Vahagn Vardanyan

Whitepaper called Hardcore SAP Penetration Testing.

tags | paper
MD5 | 50106e64a777e6408eb6c389439889da
Oracle PeopleSoft 8.5x Remote Code Execution
Posted Jan 15, 2018
Authored by Vahagn Vardanyan

Oracle PeopleSoft version 8.5x suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2017-10366
MD5 | 8cf6d1f1334e5d92e58e1baee31c949a
SAP NetWeaver J2EE Engine 7.40 SQL Injection
Posted Jan 12, 2018
Authored by Vahagn Vardanyan

SAP NetWeaver J2EE Engine version 7.40 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2016-1910, CVE-2016-2386, CVE-2016-2388
MD5 | 6b73d2dd9de02a95a19540c46ce2d138
Oracle PeopleSoft HCM 9.2 Cross Site Scripting
Posted Jan 23, 2017
Authored by Vahagn Vardanyan, Dmitry Yudin

Oracle PeopleSoft HCM version 9.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2017-3300
MD5 | 4dd106a016e78cca0fcc54e37b4a266d
SAP NetWeaver AS Java P4 MSPRUNTIMEINTERFACE Information Disclosure
Posted Jan 19, 2017
Authored by Vahagn Vardanyan

An anonymous attacker can send a special request and get sensitive information about an SAP system using SAP P4.

tags | advisory
advisories | CVE-2017-5372
MD5 | 7b915e0caf92139af559f6a5525bd302
SAP ASE ODATA Server 16 Denial Of Service
Posted Jan 19, 2017
Authored by Vahagn Vardanyan

SAP ASE ODATA Server version 16 suffers from a denial of service vulnerability.

tags | advisory, denial of service
advisories | CVE-2017-5371
MD5 | b840c4bb08e7389281e5d62c5727473d
SAP NetWeaver AS JAVA 7.4 XXE Injection
Posted Nov 21, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA version 7.4 suffers from an XML external entity (XXE) injection vulnerability.

tags | exploit, java, xxe
MD5 | d3bbd6087e44746fe007017f05500490
SAP NetWeaver AS JAVA 7.4 Denial Of Service
Posted Nov 21, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA version 7.4 suffers from a denial of service vulnerability.

tags | exploit, java, denial of service
MD5 | d5a1893b0d865d654574eb47b4b4c489
SAP Adaptive Server Enterprise 16 Denial Of Service
Posted Oct 17, 2016
Authored by Vahagn Vardanyan

An attacker can send a special request to the SAP Adaptive Server Enterprise and crash the server. Version 16 is affected.

tags | exploit
MD5 | be6284f9402d3f9f8296af20ed1357c7
SAP ABAP BASIS 7.4 Hard-Coded Password
Posted Aug 16, 2016
Authored by Vahagn Vardanyan

SAP ABAP BASIS version 7.4 suffers from a hard-coded password vulnerability.

tags | exploit
MD5 | 254fe3343ead20a5589488af2cfd2cbf
SAP xMII 15 Cross Site Scripting
Posted Jul 14, 2016
Authored by Vahagn Vardanyan, Nursultan Abubakirov

SAP xMII version 15 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2016-4016
MD5 | dfa034053e898d399f3ef27dd86f66ce
SAP NetWeaver Enqueue Server 7.4 Denial Of Service
Posted Jul 14, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver Enqueue Server version 7.4 suffers from a denial of service vulnerability.

tags | advisory, denial of service
advisories | CVE-2016-4015
MD5 | 7a44e41f506d8277e7ba7139de26a357
SAP NetWeaver AS JAVA 7.4 XXE Injection
Posted Jul 14, 2016
Authored by Vahagn Vardanyan

An attacker can trigger an XML Entity Expansion or XML External Entity Injection. This causes the entire machine to become unresponsive until the process is terminated manually. An attacker can use this flaw to perform a denial-of-service (DoS) attack. SAP NetWeaver AS JAVA version 7.4 is affected.

tags | exploit, java, xxe
advisories | CVE-2016-4014
MD5 | 1cb452375e157a2e473335a36c681d01
SAP NetWeaver AS JAVA 7.5 Cross Site Scripting
Posted Jun 22, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from a cross site scripting vulnerability.

tags | exploit, java, xss
MD5 | fa53e6898eb3732aaa5f4ba6ed8f7b47
SAP NetWeaver AS JAVA 7.5 Information Disclosure
Posted Jun 22, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer form an information disclosure vulnerability in WD_CHAT.

tags | exploit, java, info disclosure
advisories | CVE-2016-3973
MD5 | d3e6c44fb2365d40c1c8714de05523a5
SAP NetWeaver AS JAVA 7.5 XXE Injection
Posted Jun 17, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from an XML external entity injection vulnerability.

tags | exploit, java, xxe
advisories | CVE-2016-3974
MD5 | 027c5e27de4ac68aa0e914eebb31748f
SAP NetWeaver AS JAVA 7.5 Cross Site Scripting
Posted Jun 17, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from a cross site scripting vulnerability.

tags | exploit, java, xss
advisories | CVE-2016-3975
MD5 | 89bc6878420eace8f85f250f6c99ebdb
SAP NetWeaver AS JAVA 7.5 Directory Traversal
Posted Jun 17, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from a directory traversal vulnerability.

tags | exploit, java
advisories | CVE-2016-3976
MD5 | 578e21bb6388d8ce7623d56eeb47a78b
SAP NetWeaver AS JAVA 7.5 SQL Injection
Posted May 19, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from a remote SQL injection vulnerability.

tags | exploit, java, remote, sql injection
advisories | CVE-2016-2386
MD5 | f56ddedfd4c839b46a295d688dc0d771
SAP NetWeaver AS JAVA 7.5 Information Disclosure
Posted May 19, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from an information disclosure vulnerability.

tags | exploit, java, info disclosure
advisories | CVE-2016-2388
MD5 | 1d48f82209b499f72b1a8879e34f1c78
SAP NetWeaver AS JAVA 7.4 Cross Site Scripting
Posted May 16, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA version 7.4 suffers from a cross site scripting vulnerability.

tags | exploit, java, xss
MD5 | bc4e478f9c828d201457d6bbc31b2264
SAP NetWeaver J2EE Engine 7.40 Cross Site Scripting
Posted Apr 19, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver J2EE Engine version 7.40 suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 857fe493b9899d0179a8c6913343b0c6
SAP NetWeaver J2EE Engine 7.40 Cryptographic Issue
Posted Apr 15, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver J2EE Engine version 7.40 suffers from a cryptographic issue that can lead to information disclosure.

tags | advisory, info disclosure
MD5 | fbd8b4416e20686d857af6fbbceba967
SAP NetWeaver J2EE Engine 7.40 Cross Site Scripting
Posted Apr 15, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver J2EE engine version 7.40 suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 88a39587860e9bcdc1a260d070e2333b
Page 1 of 2
Back12Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

July 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    1 Files
  • 2
    Jul 2nd
    26 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    11 Files
  • 5
    Jul 5th
    13 Files
  • 6
    Jul 6th
    4 Files
  • 7
    Jul 7th
    4 Files
  • 8
    Jul 8th
    1 Files
  • 9
    Jul 9th
    16 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    32 Files
  • 12
    Jul 12th
    22 Files
  • 13
    Jul 13th
    15 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    1 Files
  • 16
    Jul 16th
    21 Files
  • 17
    Jul 17th
    15 Files
  • 18
    Jul 18th
    15 Files
  • 19
    Jul 19th
    17 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close