Browsing the "server" Tag

WonderCMS 3.1.3 Code Execution / Server-Side Request Forgery ≈ Packet Storm

December 3rd, 2020 📆 | 4399 Views ⚑

# Exploit Title: WonderCMS 3.1.3 – Authenticated SSRF to Remote Remote Code Execution# Date: 2020-11-27# Exploit Author: zetc0de# Vendor Homepage:

Tagged with:




Razer Chroma SDK Server 3.16.02 Race Condition ≈ Packet Storm

November 29th, 2020 📆 | 4163 Views ⚑

Exploit Title: Razer Chroma SDK Server 3.16.02 – Race Condition Remote File ExecutionDate: 2020-08-13Exploit Author: Loke Hui YiVendor Homepage: https://razerid.razer.comSoftware

Tagged with:




Oracle WebLogic Server Administration Console Handle Remote Code Execution ≈ Packet Storm

November 19th, 2020 📆 | 5414 Views ⚑

### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking prepend Msf::Exploit::Remote::AutoCheckinclude Msf::Exploit::Remote::HttpClientinclude Msf::Exploit::CmdStagerinclude

Tagged with:




Oracle Rushes Emergency Fix for Critical WebLogic Server Flaw – Threatpost

November 3rd, 2020 📆 | 4431 Views ⚑

Oracle Rushes Emergency Fix for Critical WebLogic Server Flaw Threatpost Source link

Tagged with:




CMS Made Simple 2.1.6 Server-Side Template Injection ≈ Packet Storm

October 27th, 2020 📆 | 5980 Views ⚑

# Exploit Title: CMS Made Simple 2.1.6 – ‘cntnt01detailtemplate’ Server-Side Template Injection# Google Dork: N/A# Date: 11/10/2017# Exploit Author: Gurkirat

Tagged with:




BigBlueButton 2.2.25 File Disclosure / Server-Side Request Forgery ≈ Packet Storm

October 22nd, 2020 📆 | 3028 Views ⚑

Advisory: Arbitrary File Disclosure and Server-Side Request Forgery in BigBlueButton RedTeam Pentesting discovered a vulnerability in the BigBlueButton webconferencing system

Tagged with:




OX App Suite / OX Documents 7.10.3 XSS / Server-Side Request Forgery ≈ Packet Storm

October 20th, 2020 📆 | 1880 Views ⚑

Product: OX App Suite / OX DocumentsVendor: OX Software GmbH Vulnerability type: Cross-Site Scripting (CWE-80)Vulnerable version: 7.10.2, 7.10.3Vulnerable component: backendReport

Tagged with:




ReQuest Serious Play F3 Media Server 7.0.3 Debug Log Disclosure ≈ Packet Storm

October 20th, 2020 📆 | 4044 Views ⚑

ReQuest Serious Play F3 Media Server 7.0.3 Debug Log Disclosure Vendor: ReQuest Serious Play LLCProduct web page: http://www.request.comAffected version: 7.0.3.4968

Tagged with: