Search the Community
Showing results for tags '8.x'.
-
Sahi Pro version 8.x suffers from a reflective cross site scripting vulnerability. View the full article
-
Ahsay Backup versions 7.x through 8.1.1.50 suffer from an XML external entity injection vulnerability. View the full article
-
This Metasploit module exploits an authenticated insecure file upload and code execution flaw in Ahsay Backup versions 7.x through 8.1.1.50. To successfully execute the upload credentials are needed, default on Ahsay Backup trial accounts are enabled so an account can be created. It can be exploited in Windows and Linux environments to get remote code execution (usually as SYSTEM). This module has been tested successfully on Ahsay Backup v8.1.1.50 with Windows 2003 SP2 Server. Because of this flaw all connected clients can be configured to execute a command before the backup starts. Allowing an attacker to takeover even more systems and make it rain shells! View the full article
-
This Metasploit module exploits an authenticated insecure file upload and code execution flaw in Ahsay Backup versions 7.x through 8.1.1.50. To successfully execute the upload credentials are needed, default on Ahsay Backup trial accounts are enabled so an account can be created. It can be exploited in Windows and Linux environments to get remote code execution (usually as SYSTEM). This module has been tested successfully on Ahsay Backup v8.1.1.50 with Windows 2003 SP2 Server. Because of this flaw all connected clients can be configured to execute a command before the backup starts. Allowing an attacker to takeover even more systems and make it rain shells! View the full article
-
Sahi Pro version 8.x suffers from a directory traversal vulnerability. View the full article
-
Sahi Pro version 8.x suffers from a cross site scripting vulnerability. View the full article
-
Sahi Pro version 8.x suffers from a remote SQL injection vulnerability. View the full article
-
Sahi Pro versions 7.x and 8.x suffer from a directory traversal vulnerability. View the full article
-
IBM Operational Decision Manager version 8.x suffers from an XML external entity injection vulnerability. View the full article
-
- ibm
- operational
- (and 5 more)
-
Exploits MaxOn ERP Software 8.x / 9.x SQL Injection
1337day-Exploits posted a topic in Updated Exploits
MaxOn ERP Software versions 8.x and 9.x suffer from a remote SQL injection vulnerability. View the full article