Showing 1 - 4 of 4

Files from securiteam

Synology StorageManager 5.2 Remote Command Execution: Posted Nov 29, 2017; Authored by securiteam; Synology StorageManager version 5.2 suffers from a remote root command execution vulnerability in smart.cgi.; tags | exploit, remote, cgi, root; SHA-256 | 8b6426fb7ecab4c3be36761c437ebb2dc9019377c22d2acbac83d341781b3249; Download | Favorite | View

IBM OpenAdmin Tool SOAP welcomeServer PHP Code Execution: Posted Aug 22, 2017; Authored by securiteam | Site metasploit.com; This Metasploit module exploits an unauthenticated remote PHP code execution vulnerability in IBM OpenAdmin Tool included with IBM Informix versions 11.5, 11.7, and 12.1. The 'welcomeServer' SOAP service does not properly validate user input in the 'new_home_page' parameter of the 'saveHomePage' method allowing arbitrary PHP code to be written to the config.php file. The config.php file is executed in most pages within the application, and accessible directly via the web root, resulting in code execution. This Metasploit module has been tested successfully on IBM OpenAdmin Tool 3.14 on Informix 12.10 Developer Edition (SUSE Linux 11) virtual appliance.; tags | exploit, remote, web, arbitrary, root, php, code execution; systems | linux, suse; advisories | CVE-2017-1092; SHA-256 | cb6e9a3b36f0f3954b25245916aa392a5a80294c27ec99178fffa5ccf236d183; Download | Favorite | View

SAXoPRESS.txt: Posted Apr 12, 2006; Authored by securiteam; SAXoPRESS suffers from a directory transversal vulnerability, allowing an attacker to read the contents of files on the server.; tags | advisory; SHA-256 | a2462c3295e432649925f198bb27e6366741793a57802a72f40d991a98dd619d; Download | Favorite | View

nt.php.htm: Posted Jan 8, 2002; Authored by securiteam | Site securiteam.com; NT PHP.exe remote exploit. Allows any file on the webserver to be read.; tags | exploit, remote, php; SHA-256 | c70fec2805964960bbe0e6b210553f178550aa358ea04a158de1e717aa0fec37; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days