what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 40 RSS Feed

Files from Vahagn Vardanyan

First Active2015-06-11
Last Active2019-04-19
Oracle Business Intelligence Directory Traversal
Posted Apr 19, 2019
Authored by Vahagn Vardanyan

Oracle Business Intelligence versions 11.1.1.9.0, 12.2.1.3.0, and 12.2.1.4.0 suffer from a directory traversal vulnerability.

tags | exploit, file inclusion
advisories | CVE-2019-2588
SHA-256 | f889cbd6c0762b5cfc93403140f5bfc082892ff8d1316d040347fcd83fa1cd66
Oracle Business Intelligence And XML Publisher XML Injection
Posted Apr 19, 2019
Authored by Vahagn Vardanyan

Oracle Business Intelligence and XML Publisher versions 11.1.1.9.0, 12.2.1.3.0, and 12.2.1.4.0 suffer from an XML external entity injection vulnerability.

tags | exploit
advisories | CVE-2019-2616
SHA-256 | 9b1f96ce9d58e2ce9fb86e9dd9bfab292f9c8681bcc090841c3e665ed7a0c12c
SAP NetWeaver AS JAVA CRM Log Injection Remote Command Execution
Posted Mar 14, 2018
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA CRM log injection remote command execution exploit.

tags | exploit, java, remote
advisories | CVE-2018-2380
SHA-256 | 3e099354c4a0cc48ef5abaf2930e91c0e1bb6616e3ff003040ac00c3e5138384
Hardcore SAP Penetration Testing
Posted Jan 24, 2018
Authored by Vahagn Vardanyan

Whitepaper called Hardcore SAP Penetration Testing.

tags | paper
SHA-256 | 986b9f90a45b4f44d94014583a6977f3c90b0e20588aec50916aef9f9e0baf39
Oracle PeopleSoft 8.5x Remote Code Execution
Posted Jan 15, 2018
Authored by Vahagn Vardanyan

Oracle PeopleSoft version 8.5x suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2017-10366
SHA-256 | 656a40131f4c856c17aef7ac78ea99f8fbbc7bcb6a234a9ab725ec1ef9b81d37
SAP NetWeaver J2EE Engine 7.40 SQL Injection
Posted Jan 12, 2018
Authored by Vahagn Vardanyan

SAP NetWeaver J2EE Engine version 7.40 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2016-1910, CVE-2016-2386, CVE-2016-2388
SHA-256 | cb6e6e7579cc9127153cb46e035b5fd75ccd3b09722fd320906c7fbe7cd42ab6
Oracle PeopleSoft HCM 9.2 Cross Site Scripting
Posted Jan 23, 2017
Authored by Vahagn Vardanyan, Dmitry Yudin

Oracle PeopleSoft HCM version 9.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2017-3300
SHA-256 | 7bb5d0122cf38d54f586c668b0e097fe56bac8440c897f157f8cd1a73f9d27f7
SAP NetWeaver AS Java P4 MSPRUNTIMEINTERFACE Information Disclosure
Posted Jan 19, 2017
Authored by Vahagn Vardanyan

An anonymous attacker can send a special request and get sensitive information about an SAP system using SAP P4.

tags | advisory
advisories | CVE-2017-5372
SHA-256 | 36cb9d95d2853e96d8d78ffdd54ac9224b0dcfdbca38b7e591e955059ecd2ef0
SAP ASE ODATA Server 16 Denial Of Service
Posted Jan 19, 2017
Authored by Vahagn Vardanyan

SAP ASE ODATA Server version 16 suffers from a denial of service vulnerability.

tags | advisory, denial of service
advisories | CVE-2017-5371
SHA-256 | e9bab73c568741be1dfc69926253f141605f05b9eb09f73837dbc7e0b0f9891e
SAP NetWeaver AS JAVA 7.4 XXE Injection
Posted Nov 21, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA version 7.4 suffers from an XML external entity (XXE) injection vulnerability.

tags | exploit, java, xxe
SHA-256 | efd99512a1f7388c7f876065269028bfcebd3facd45d7f9528eed91a41312084
SAP NetWeaver AS JAVA 7.4 Denial Of Service
Posted Nov 21, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA version 7.4 suffers from a denial of service vulnerability.

tags | exploit, java, denial of service
SHA-256 | 867f8128690b89340fd1f3685572beeded84a79290e1e6dc540dcd297158cc35
SAP Adaptive Server Enterprise 16 Denial Of Service
Posted Oct 17, 2016
Authored by Vahagn Vardanyan

An attacker can send a special request to the SAP Adaptive Server Enterprise and crash the server. Version 16 is affected.

tags | exploit
SHA-256 | bb04162b039d0e5cc13c114a213b887ada2d65e992d806d460a0fd4927e03c50
SAP ABAP BASIS 7.4 Hard-Coded Password
Posted Aug 16, 2016
Authored by Vahagn Vardanyan

SAP ABAP BASIS version 7.4 suffers from a hard-coded password vulnerability.

tags | exploit
SHA-256 | c2f2ad6d80654372a57d24cf5bf501f4f3bc5de46217cff4a93421ee97dc992b
SAP xMII 15 Cross Site Scripting
Posted Jul 14, 2016
Authored by Vahagn Vardanyan, Nursultan Abubakirov

SAP xMII version 15 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2016-4016
SHA-256 | 5850231991ac99f0ad17f7ed8105673b22741e6d0c9e698a5cc695f008b1af0e
SAP NetWeaver Enqueue Server 7.4 Denial Of Service
Posted Jul 14, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver Enqueue Server version 7.4 suffers from a denial of service vulnerability.

tags | advisory, denial of service
advisories | CVE-2016-4015
SHA-256 | 99a16a30bd31df9bdc036bd0035a07a2d7a2e3eb036b6050b71e1fd2acb89ff1
SAP NetWeaver AS JAVA 7.4 XXE Injection
Posted Jul 14, 2016
Authored by Vahagn Vardanyan

An attacker can trigger an XML Entity Expansion or XML External Entity Injection. This causes the entire machine to become unresponsive until the process is terminated manually. An attacker can use this flaw to perform a denial-of-service (DoS) attack. SAP NetWeaver AS JAVA version 7.4 is affected.

tags | exploit, java, xxe
advisories | CVE-2016-4014
SHA-256 | 00d680c67dc60d3912397c85f8496bcdaca53ce2cb060a4c8ebe9fc69b59c8a2
SAP NetWeaver AS JAVA 7.5 Cross Site Scripting
Posted Jun 22, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from a cross site scripting vulnerability.

tags | exploit, java, xss
SHA-256 | 3227c8ee7e5ffae4107c3102e05d6c483cc347aa6c21ed54de26dc0f839fee13
SAP NetWeaver AS JAVA 7.5 Information Disclosure
Posted Jun 22, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer form an information disclosure vulnerability in WD_CHAT.

tags | exploit, java, info disclosure
advisories | CVE-2016-3973
SHA-256 | c86a0c971a9ddf7d0a42320c53175f15d4860f92751a45e80a3910f467711ef4
SAP NetWeaver AS JAVA 7.5 XXE Injection
Posted Jun 17, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from an XML external entity injection vulnerability.

tags | exploit, java, xxe
advisories | CVE-2016-3974
SHA-256 | 44897fd3de22b74e679203c9cb11f3fb82fcf5325291f376823810d3b828f093
SAP NetWeaver AS JAVA 7.5 Cross Site Scripting
Posted Jun 17, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from a cross site scripting vulnerability.

tags | exploit, java, xss
advisories | CVE-2016-3975
SHA-256 | 20052cfd6741d7dfcf904514b3be697e271bc2041eeead1cb9b3ca48a8d8d899
SAP NetWeaver AS JAVA 7.5 Directory Traversal
Posted Jun 17, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from a directory traversal vulnerability.

tags | exploit, java
advisories | CVE-2016-3976
SHA-256 | 790e576e203d8d6179e7abc17a655e8165edc85deda7e8a80645173db2db72a8
SAP NetWeaver AS JAVA 7.5 SQL Injection
Posted May 19, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from a remote SQL injection vulnerability.

tags | exploit, java, remote, sql injection
advisories | CVE-2016-2386
SHA-256 | db00019357db1804ffea0c5ca76cb4f4042f6423e57de6a275761be682393508
SAP NetWeaver AS JAVA 7.5 Information Disclosure
Posted May 19, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from an information disclosure vulnerability.

tags | exploit, java, info disclosure
advisories | CVE-2016-2388
SHA-256 | ff32f8dfc483575f12d9638b631629d9ab8b592d1ff7efb0bb98169a0fa75462
SAP NetWeaver AS JAVA 7.4 Cross Site Scripting
Posted May 16, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver AS JAVA version 7.4 suffers from a cross site scripting vulnerability.

tags | exploit, java, xss
SHA-256 | 6b5b4efd5d7e256e564699033608a728468786c991209741d89bfdce20049406
SAP NetWeaver J2EE Engine 7.40 Cross Site Scripting
Posted Apr 19, 2016
Authored by Vahagn Vardanyan

SAP NetWeaver J2EE Engine version 7.40 suffers from a cross site scripting vulnerability.

tags | advisory, xss
SHA-256 | 4655901da59fa913d5474f46ffc2314351dc96a7255647b287423117a2d864b4
Page 1 of 2
Back12Next

File Archive:

June 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    19 Files
  • 2
    Jun 2nd
    16 Files
  • 3
    Jun 3rd
    28 Files
  • 4
    Jun 4th
    0 Files
  • 5
    Jun 5th
    0 Files
  • 6
    Jun 6th
    19 Files
  • 7
    Jun 7th
    23 Files
  • 8
    Jun 8th
    11 Files
  • 9
    Jun 9th
    10 Files
  • 10
    Jun 10th
    4 Files
  • 11
    Jun 11th
    0 Files
  • 12
    Jun 12th
    0 Files
  • 13
    Jun 13th
    0 Files
  • 14
    Jun 14th
    0 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    27 Files
  • 20
    Jun 20th
    65 Files
  • 21
    Jun 21st
    10 Files
  • 22
    Jun 22nd
    8 Files
  • 23
    Jun 23rd
    6 Files
  • 24
    Jun 24th
    6 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    15 Files
  • 28
    Jun 28th
    14 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close