Showing 1 - 25 of 40

Files from Vahagn Vardanyan

First Active	2015-06-11
Last Active	2019-04-19

Oracle Business Intelligence Directory Traversal: Posted Apr 19, 2019; Authored by Vahagn Vardanyan; Oracle Business Intelligence versions 11.1.1.9.0, 12.2.1.3.0, and 12.2.1.4.0 suffer from a directory traversal vulnerability.; tags | exploit, file inclusion; advisories | CVE-2019-2588; SHA-256 | f889cbd6c0762b5cfc93403140f5bfc082892ff8d1316d040347fcd83fa1cd66; Download | Favorite | View

Oracle Business Intelligence And XML Publisher XML Injection: Posted Apr 19, 2019; Authored by Vahagn Vardanyan; Oracle Business Intelligence and XML Publisher versions 11.1.1.9.0, 12.2.1.3.0, and 12.2.1.4.0 suffer from an XML external entity injection vulnerability.; tags | exploit; advisories | CVE-2019-2616; SHA-256 | 9b1f96ce9d58e2ce9fb86e9dd9bfab292f9c8681bcc090841c3e665ed7a0c12c; Download | Favorite | View

SAP NetWeaver AS JAVA CRM Log Injection Remote Command Execution: Posted Mar 14, 2018; Authored by Vahagn Vardanyan; SAP NetWeaver AS JAVA CRM log injection remote command execution exploit.; tags | exploit, java, remote; advisories | CVE-2018-2380; SHA-256 | 3e099354c4a0cc48ef5abaf2930e91c0e1bb6616e3ff003040ac00c3e5138384; Download | Favorite | View

Hardcore SAP Penetration Testing: Posted Jan 24, 2018; Authored by Vahagn Vardanyan; Whitepaper called Hardcore SAP Penetration Testing.; tags | paper; SHA-256 | 986b9f90a45b4f44d94014583a6977f3c90b0e20588aec50916aef9f9e0baf39; Download | Favorite | View

Oracle PeopleSoft 8.5x Remote Code Execution: Posted Jan 15, 2018; Authored by Vahagn Vardanyan; Oracle PeopleSoft version 8.5x suffers from a remote code execution vulnerability.; tags | exploit, remote, code execution; advisories | CVE-2017-10366; SHA-256 | 656a40131f4c856c17aef7ac78ea99f8fbbc7bcb6a234a9ab725ec1ef9b81d37; Download | Favorite | View

SAP NetWeaver J2EE Engine 7.40 SQL Injection: Posted Jan 12, 2018; Authored by Vahagn Vardanyan; SAP NetWeaver J2EE Engine version 7.40 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; advisories | CVE-2016-1910, CVE-2016-2386, CVE-2016-2388; SHA-256 | cb6e6e7579cc9127153cb46e035b5fd75ccd3b09722fd320906c7fbe7cd42ab6; Download | Favorite | View

Oracle PeopleSoft HCM 9.2 Cross Site Scripting: Posted Jan 23, 2017; Authored by Vahagn Vardanyan, Dmitry Yudin; Oracle PeopleSoft HCM version 9.2 suffers from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2017-3300; SHA-256 | 7bb5d0122cf38d54f586c668b0e097fe56bac8440c897f157f8cd1a73f9d27f7; Download | Favorite | View

SAP NetWeaver AS Java P4 MSPRUNTIMEINTERFACE Information Disclosure: Posted Jan 19, 2017; Authored by Vahagn Vardanyan; An anonymous attacker can send a special request and get sensitive information about an SAP system using SAP P4.; tags | advisory; advisories | CVE-2017-5372; SHA-256 | 36cb9d95d2853e96d8d78ffdd54ac9224b0dcfdbca38b7e591e955059ecd2ef0; Download | Favorite | View

SAP ASE ODATA Server 16 Denial Of Service: Posted Jan 19, 2017; Authored by Vahagn Vardanyan; SAP ASE ODATA Server version 16 suffers from a denial of service vulnerability.; tags | advisory, denial of service; advisories | CVE-2017-5371; SHA-256 | e9bab73c568741be1dfc69926253f141605f05b9eb09f73837dbc7e0b0f9891e; Download | Favorite | View

SAP NetWeaver AS JAVA 7.4 XXE Injection: Posted Nov 21, 2016; Authored by Vahagn Vardanyan; SAP NetWeaver AS JAVA version 7.4 suffers from an XML external entity (XXE) injection vulnerability.; tags | exploit, java, xxe; SHA-256 | efd99512a1f7388c7f876065269028bfcebd3facd45d7f9528eed91a41312084; Download | Favorite | View

SAP NetWeaver AS JAVA 7.4 Denial Of Service: Posted Nov 21, 2016; Authored by Vahagn Vardanyan; SAP NetWeaver AS JAVA version 7.4 suffers from a denial of service vulnerability.; tags | exploit, java, denial of service; SHA-256 | 867f8128690b89340fd1f3685572beeded84a79290e1e6dc540dcd297158cc35; Download | Favorite | View

SAP Adaptive Server Enterprise 16 Denial Of Service: Posted Oct 17, 2016; Authored by Vahagn Vardanyan; An attacker can send a special request to the SAP Adaptive Server Enterprise and crash the server. Version 16 is affected.; tags | exploit; SHA-256 | bb04162b039d0e5cc13c114a213b887ada2d65e992d806d460a0fd4927e03c50; Download | Favorite | View

SAP ABAP BASIS 7.4 Hard-Coded Password: Posted Aug 16, 2016; Authored by Vahagn Vardanyan; SAP ABAP BASIS version 7.4 suffers from a hard-coded password vulnerability.; tags | exploit; SHA-256 | c2f2ad6d80654372a57d24cf5bf501f4f3bc5de46217cff4a93421ee97dc992b; Download | Favorite | View

SAP xMII 15 Cross Site Scripting: Posted Jul 14, 2016; Authored by Vahagn Vardanyan, Nursultan Abubakirov; SAP xMII version 15 suffers from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2016-4016; SHA-256 | 5850231991ac99f0ad17f7ed8105673b22741e6d0c9e698a5cc695f008b1af0e; Download | Favorite | View

SAP NetWeaver Enqueue Server 7.4 Denial Of Service: Posted Jul 14, 2016; Authored by Vahagn Vardanyan; SAP NetWeaver Enqueue Server version 7.4 suffers from a denial of service vulnerability.; tags | advisory, denial of service; advisories | CVE-2016-4015; SHA-256 | 99a16a30bd31df9bdc036bd0035a07a2d7a2e3eb036b6050b71e1fd2acb89ff1; Download | Favorite | View

SAP NetWeaver AS JAVA 7.4 XXE Injection: Posted Jul 14, 2016; Authored by Vahagn Vardanyan; An attacker can trigger an XML Entity Expansion or XML External Entity Injection. This causes the entire machine to become unresponsive until the process is terminated manually. An attacker can use this flaw to perform a denial-of-service (DoS) attack. SAP NetWeaver AS JAVA version 7.4 is affected.; tags | exploit, java, xxe; advisories | CVE-2016-4014; SHA-256 | 00d680c67dc60d3912397c85f8496bcdaca53ce2cb060a4c8ebe9fc69b59c8a2; Download | Favorite | View

SAP NetWeaver AS JAVA 7.5 Cross Site Scripting: Posted Jun 22, 2016; Authored by Vahagn Vardanyan; SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from a cross site scripting vulnerability.; tags | exploit, java, xss; SHA-256 | 3227c8ee7e5ffae4107c3102e05d6c483cc347aa6c21ed54de26dc0f839fee13; Download | Favorite | View

SAP NetWeaver AS JAVA 7.5 Information Disclosure: Posted Jun 22, 2016; Authored by Vahagn Vardanyan; SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer form an information disclosure vulnerability in WD_CHAT.; tags | exploit, java, info disclosure; advisories | CVE-2016-3973; SHA-256 | c86a0c971a9ddf7d0a42320c53175f15d4860f92751a45e80a3910f467711ef4; Download | Favorite | View

SAP NetWeaver AS JAVA 7.5 XXE Injection: Posted Jun 17, 2016; Authored by Vahagn Vardanyan; SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from an XML external entity injection vulnerability.; tags | exploit, java, xxe; advisories | CVE-2016-3974; SHA-256 | 44897fd3de22b74e679203c9cb11f3fb82fcf5325291f376823810d3b828f093; Download | Favorite | View

SAP NetWeaver AS JAVA 7.5 Cross Site Scripting: Posted Jun 17, 2016; Authored by Vahagn Vardanyan; SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from a cross site scripting vulnerability.; tags | exploit, java, xss; advisories | CVE-2016-3975; SHA-256 | 20052cfd6741d7dfcf904514b3be697e271bc2041eeead1cb9b3ca48a8d8d899; Download | Favorite | View

SAP NetWeaver AS JAVA 7.5 Directory Traversal: Posted Jun 17, 2016; Authored by Vahagn Vardanyan; SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from a directory traversal vulnerability.; tags | exploit, java; advisories | CVE-2016-3976; SHA-256 | 790e576e203d8d6179e7abc17a655e8165edc85deda7e8a80645173db2db72a8; Download | Favorite | View

SAP NetWeaver AS JAVA 7.5 SQL Injection: Posted May 19, 2016; Authored by Vahagn Vardanyan; SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from a remote SQL injection vulnerability.; tags | exploit, java, remote, sql injection; advisories | CVE-2016-2386; SHA-256 | db00019357db1804ffea0c5ca76cb4f4042f6423e57de6a275761be682393508; Download | Favorite | View

SAP NetWeaver AS JAVA 7.5 Information Disclosure: Posted May 19, 2016; Authored by Vahagn Vardanyan; SAP NetWeaver AS JAVA versions 7.1 through 7.5 suffer from an information disclosure vulnerability.; tags | exploit, java, info disclosure; advisories | CVE-2016-2388; SHA-256 | ff32f8dfc483575f12d9638b631629d9ab8b592d1ff7efb0bb98169a0fa75462; Download | Favorite | View

SAP NetWeaver AS JAVA 7.4 Cross Site Scripting: Posted May 16, 2016; Authored by Vahagn Vardanyan; SAP NetWeaver AS JAVA version 7.4 suffers from a cross site scripting vulnerability.; tags | exploit, java, xss; SHA-256 | 6b5b4efd5d7e256e564699033608a728468786c991209741d89bfdce20049406; Download | Favorite | View

SAP NetWeaver J2EE Engine 7.40 Cross Site Scripting: Posted Apr 19, 2016; Authored by Vahagn Vardanyan; SAP NetWeaver J2EE Engine version 7.40 suffers from a cross site scripting vulnerability.; tags | advisory, xss; SHA-256 | 4655901da59fa913d5474f46ffc2314351dc96a7255647b287423117a2d864b4; Download | Favorite | View

Page 1 of 2 Back 1 2 Next

Top Authors In Last 30 Days

Red Hat 221 files
Ubuntu 59 files
Debian 30 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
tmrswrr 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,298)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,550)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,453)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

Files from Vahagn Vardanyan

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems