Vahagn Vardanyan - Security Researcher - Exploit Intelligence Platform

CVE-2016-2388 VULNCHECK_XDB MEDIUM WORKING POC

SAP NetWeaver AS JAVA 7.10-7.50 - Exposure of Sensitive Information via Universal Worklist Configuration

The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request, aka SAP Security Note 2256846.

CVSS 5.3

View Code

CVE-2016-2386 VULNCHECK_XDB CRITICAL WORKING POC

SAP NetWeaver Application Server Java 7.40 - SQL Injection

SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Note 2101079.

CVSS 9.8

View Code

CVE-2016-1910 EXPLOITDB MEDIUM python WORKING POC

SAP NetWeaver 7.4 - Info Disclosure

The User Management Engine (UME) in SAP NetWeaver 7.4 allows attackers to decrypt unspecified data via unknown vectors, aka SAP Security Note 2191290.

CVSS 5.3

View Code

CVE-2016-2386 EXPLOITDB CRITICAL python WORKING POC

SAP NetWeaver Application Server Java 7.40 - SQL Injection

SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Note 2101079.

CVSS 9.8

View Code

EIP-2026-119671 EXPLOITDB text WORKING POC

Citrix StoreFront Server 7.15 - XML External Entity Injection

View Code

CVE-2019-2616 EXPLOITDB HIGH text WORKING POC

Oracle Fusion Middleware - Unauthenticated RCE

Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (subcomponent: BI Publisher Security). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise BI Publisher (formerly XML Publisher). While the vulnerability is in BI Publisher (formerly XML Publisher), attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of BI Publisher (formerly XML Publisher) accessible data as well as unauthorized read access to a subset of BI Publisher (formerly XML Publisher) accessible data. CVSS 3.0 Base Score 7.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N).

CVSS 7.2

View Code

CVE-2019-2588 EXPLOITDB MEDIUM text WORKING POC

Oracle Fusion Middleware - Unauthorized Access

Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (subcomponent: BI Publisher Security). Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise BI Publisher (formerly XML Publisher). Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all BI Publisher (formerly XML Publisher) accessible data. CVSS 3.0 Base Score 4.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N).

CVSS 4.9

View Code

EIP-2026-119685 EXPLOITDB text WORKING POC

SAP NetWeaver AS JAVA - 'BC-BMT-BPM-DSK' XML External Entity Injection

View Code

CVE-2016-2388 EXPLOITDB MEDIUM text WRITEUP

SAP NetWeaver AS JAVA 7.10-7.50 - Exposure of Sensitive Information via Universal Worklist Configuration

The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request, aka SAP Security Note 2256846.

CVSS 5.3

View Code

CVE-2016-2386 EXPLOITDB CRITICAL text WORKING POC

SAP NetWeaver Application Server Java 7.40 - SQL Injection

SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Note 2101079.

CVSS 9.8

View Code

EIP-2026-116216 EXPLOITDB python WORKING POC

SAP Adaptive Server Enterprise 16 - Denial of Service

View Code

CVE-2016-2388 EXPLOITDB MEDIUM python WORKING POC

SAP NetWeaver AS JAVA 7.10-7.50 - Exposure of Sensitive Information via Universal Worklist Configuration

The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request, aka SAP Security Note 2256846.

CVSS 5.3

View Code

CVE-2018-15961 EXPLOITDB CRITICAL text WORKING POC

Adobe ColdFusion July 12 release (2018.0.0.310739) Update 6 and earlier Update 14 and earlier - Unrestricted File Upload

Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have an unrestricted file upload vulnerability. Successful exploitation could lead to arbitrary code execution.

CVSS 9.8

View Code

CVE-2016-3976 EXPLOITDB HIGH text WRITEUP

SAP NetWeaver AS Java <7.6 - Path Traversal

Directory traversal vulnerability in SAP NetWeaver AS Java 7.1 through 7.5 allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in the fileName parameter to CrashFileDownloadServlet, aka SAP Security Note 2234971.

CVSS 7.5

View Code

CVE-2016-3974 EXPLOITDB CRITICAL text WORKING POC

SAP NetWeaver Application Server Java 7.10-7.50 - XML External Entity Injection via ServerNodesWSService

XML external entity (XXE) vulnerability in the Configuration Wizard in SAP NetWeaver Java AS 7.1 through 7.5 allows remote attackers to cause a denial of service, conduct SMB Relay attacks, or access arbitrary files via a crafted XML request to _tc~monitoring~webservice~web/ServerNodesWSService, aka SAP Security Note 2235994.

CVSS 9.1

View Code

CVE-2017-10366 EXPLOITDB CRITICAL text WRITEUP

Oracle PeopleSoft Products <8.57 - RCE

Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products (subcomponent: Performance Monitor). Supported versions that are affected are 8.54, 8.55 and 8.56. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PT PeopleTools. Successful attacks of this vulnerability can result in takeover of PeopleSoft Enterprise PT PeopleTools. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

CVSS 9.8

View Code