• Apache 2.4.49/2.4.50 Traversal RCE scanner
    Disclosure Date: 2021-05-10
    First seen: 2022-12-23
    auxiliary/scanner/http/apache_normalize_path
  • Apache 2.4.49/2.4.50 Traversal RCE
    Disclosure Date: 2021-05-10
    First seen: 2022-12-23
    exploit/multi/http/apache_normalize_path_rce
  • Oracle Secure Backup Authentication Bypass/Command Injection Vulnerability
    Disclosure Date: 2010-07-13
    First seen: 2020-04-26
    auxiliary/admin/oracle/osb_execqr3
    This module exploits an authentication bypass vulnerability in login.php in order to execute arbitrary code via a command injection vulnerability in property_box.php. This module was tested against Oracle Secure Backup version 10.3.0.1.0 (Win32). Authors: - MC <mc@metasploit.com>
  • Oracle Secure Backup Authentication Bypass/Command Injection Vulnerability
    Disclosure Date: 2010-07-13
    First seen: 2020-04-26
    exploit/windows/http/osb_uname_jlist
    This module exploits an authentication bypass vulnerability in login.php. In conjunction with the authentication bypass issue, the 'jlist' parameter in property_box.php can be used to execute arbitrary system commands. This module was tested against Oracle Secure Backup version 10.3.0.1.0 Authors: - MC <mc@metasploit.com>
  • Oracle Secure Backup Authentication Bypass/Command Injection Vulnerability
    Disclosure Date: 2009-08-18
    First seen: 2020-04-26
    auxiliary/admin/oracle/osb_execqr2
    This module exploits an authentication bypass vulnerability in login.php in order to execute arbitrary code via a command injection vulnerability in property_box.php. This module was tested against Oracle Secure Backup version 10.3.0.1.0 (Win32). Authors: - MC <mc@metasploit.com>
  • Oracle Secure Backup Authentication Bypass/Command Injection Vulnerability
    Disclosure Date: 2009-08-18
    First seen: 2020-04-26
    auxiliary/admin/oracle/osb_execqr2
    This module exploits an authentication bypass vulnerability in login.php in order to execute arbitrary code via a command injection vulnerability in property_box.php. This module was tested against Oracle Secure Backup version 10.3.0.1.0 (Win32). Authors: - MC <mc@metasploit.com>
  • Oracle Secure Backup NDMP_CONNECT_CLIENT_AUTH Buffer Overflow
    Disclosure Date: 2009-01-14
    First seen: 2020-04-26
    exploit/windows/oracle/osb_ndmp_auth
    The module exploits a stack buffer overflow in Oracle Secure Backup. When sending a specially crafted NDMP_CONNECT_CLIENT_AUTH packet, an attacker may be able to execute arbitrary code. Authors: - MC <mc@metasploit.com>
  • Oracle Secure Backup exec_qr() Command Injection Vulnerability
    Disclosure Date: 2009-01-14
    First seen: 2020-04-26
    auxiliary/admin/oracle/osb_execqr
    This module exploits a command injection vulnerability in Oracle Secure Backup version 10.1.0.3 to 10.2.0.2. Authors: - MC <mc@metasploit.com>
8 metasploit modules found
Please note: Metasploit modules are only matched by CVE numbers. Visit metasploit web site for more details
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!