what you don't know can hurt you
Showing 1 - 10 of 10 RSS Feed

Files

Online Shopping Alphaware 1.0 SQL Injection
Posted Jul 31, 2020
Authored by Ahmed Abbas

Online Shopping Alphaware version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 2f22bbeb57ec0516c03bb902f1c1c310

Related Files

Oracle Virtual Server Agent Local Privilege Escalation
Posted Nov 3, 2010
Site onapsis.com

Onapsis Security Advisory - The Oracle Virtual Server Agent suffers from a local privilege escalation vulnerability. By exploiting this vulnerability, an authenticated attacker would be able to remotely compromise the OVS server, together with all the virtual machines configured on it. This would result in the compromise of integrity, availability and confidentiality of every virtual machine deployed in the OVS server.

tags | advisory, local
advisories | CVE-2010-3584
MD5 | d5fa4b14ffb8288921587b85bbb4449d
Oracle Virtual Server Agent Remote Command Execution
Posted Nov 3, 2010
Site onapsis.com

Onapsis Security Advisory - The Oracle Virtual Server Agent suffers from a remote command execution vulnerability. By exploiting this vulnerability, an authenticated attacker would be able to remotely compromise the OVS server, together with all the virtual machines configured on it. This would result in the compromise of integrity, availability and confidentiality of every virtual machine deployed in the OVS server.

tags | advisory, remote
advisories | CVE-2010-3583
MD5 | eb3a80187820535f99c87f63e0106a53
Oracle Virtual Server Agent Arbitrary File Access
Posted Nov 3, 2010
Site onapsis.com

Onapsis Security Advisory - The Oracle Virtual Server Agent suffers from an arbitrary file access vulnerability. By exploiting this vulnerability, an authenticated attacker would be able to remotely compromise the OVS server, together with all the virtual machines configured on it. This would result in the compromise of integrity, availability and confidentiality of every virtual machine deployed in the OVS server.

tags | advisory, arbitrary
advisories | CVE-2010-3585
MD5 | a41680288e1d8697b157d6634848a9f9
SAP Management Console Multiple Denial Of Service
Posted Sep 29, 2010
Site onapsis.com

Onapsis Security Advisory - The SAP MC component fails to process malformed requests, resulting in a denial of service condition due to the fact that the affected service is crashed.

tags | advisory, denial of service
MD5 | ad6b07209035ee72ab34109cff8b51b6
SAP J2EE Web Services Navigator Cross Site Scripting
Posted Jul 21, 2010
Site onapsis.com

Onapsis Security Advisory - The SAP J2EE Engine contains a Web Services Navigator interface, which enables the interaction with the deployed Web Services in the server. This interface suffers from a Cross-Site Scripting vulnerability, which may enable malicious parties to perform different kind of attacks over SAP users.

tags | advisory, web, xss
MD5 | 98ff2f867dd1e33f82a76fbf20ab7ec6
SAP J2EE Telnet Administration Security Check Bypass
Posted Jun 17, 2010
Site onapsis.com

SAP J2EE Telnet Administration suffers from an authentication bypass vulnerability.

tags | advisory, bypass
MD5 | b498fad0f33efc0cb881fd61e8d8cea0
SAP J2EE Engine MDB Path Traversal
Posted Feb 12, 2010
Site onapsis.com

Onapsis Security Advisory - The Message-Driven Bean Example application in the SAP J2EE Engine suffers from a path traversal vulnerability, which may enable remote attackers to access sensitive files in the server filesystem.

tags | advisory, remote
MD5 | 5c051d2b977d7ba86188837bdc08f2fa
SAP J2EE Authentication Phishing Vector
Posted Feb 12, 2010
Site onapsis.com

Onapsis Security Advisory - The Authentication mechanism of the SAP J2EE Engine (which is shared by the Enterprise Portal and other solutions) suffers from a phishing vector vulnerability, which may allow a remote attacker to perform different attacks to the organization's SAP users.

tags | advisory, remote
MD5 | 65c824737b8bb0ad2825a0b37bcd2d44
SAP WebDynpro Runtime XSS/CSS Injection
Posted Feb 12, 2010
Site onapsis.com

Onapsis Security Advisory - SAP WebDynPro suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 1f9941a66245cfa8e6b362275966f910
osa-rfi.txt
Posted Feb 6, 2008
Authored by Trancek

OpenSiteAdmin versions 0.9.1.1 and below suffer from multiple remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion
MD5 | fbc661fc8ce7d299d62f81a675a24b44
Page 1 of 1
Back1Next

File Archive:

August 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    0 Files
  • 2
    Aug 2nd
    0 Files
  • 3
    Aug 3rd
    0 Files
  • 4
    Aug 4th
    0 Files
  • 5
    Aug 5th
    0 Files
  • 6
    Aug 6th
    0 Files
  • 7
    Aug 7th
    0 Files
  • 8
    Aug 8th
    0 Files
  • 9
    Aug 9th
    0 Files
  • 10
    Aug 10th
    0 Files
  • 11
    Aug 11th
    0 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close