InitRoot

3 exploits Active since Jun 2005
CVE-2020-6308 NOMISEC MEDIUM WRITEUP
SAP BusinessObjects Web Services - Info Disclosure
SAP BusinessObjects Business Intelligence Platform (Web Services) versions - 410, 420, 430, allows an unauthenticated attacker to inject arbitrary values as CMS parameters to perform lookups on the internal network which is otherwise not accessible externally. On successful exploitation, attacker can scan internal network to determine internal infrastructure and gather information for further attacks like remote file inclusion, retrieve server files, bypass firewall and force the vulnerable server to perform malicious requests, resulting in a Server-Side Request Forgery vulnerability.
36 stars
CVSS 5.3
CVE-2022-23342 NOMISEC MEDIUM WRITEUP
Hyland Onbase <20.3.58.1000, 21.1.1-21.1.15 - Info Disclosure
The Hyland Onbase Application Server releases prior to 20.3.58.1000 and OnBase releases 21.1.1.1000 through 21.1.15.1000 are vulnerable to a username enumeration vulnerability. An attacker can obtain valid users based on the response returned for invalid and valid users by sending a POST login request to the /mobilebroker/ServiceToBroker.svc/Json/Connect endpoint. This can lead to user enumeration against the underlying Active Directory integrated systems.
3 stars
CVSS 5.3
CVE-2005-1794 NOMISEC SCANNER
Microsoft Terminal Server <5.2 - Privilege Escalation
Microsoft Terminal Server using Remote Desktop Protocol (RDP) 5.2 stores an RSA private key in mstlsapi.dll and uses it to sign a certificate, which allows remote attackers to spoof public keys of legitimate servers and conduct man-in-the-middle attacks.
1 stars