Showing 1 - 3 of 3

Files from RandoriSec

First Active	2017-03-07
Last Active	2023-08-24

Chamilo 1.11.18 Command Injection: Posted Aug 24, 2023; Authored by RandoriSec, h00die-gr3y | Site metasploit.com; This Metasploit module exploits an unauthenticated remote command execution vulnerability that affects Chamilo versions 1.11.18 and below. Due to a functionality called Chamilo Rapid to easily convert PowerPoint slides to courses on Chamilo, it is possible for an unauthenticated remote attacker to execute arbitrary commands at the OS level using a malicious SOAP request at the vulnerable endpoint /main/webservices/additional_webservices.php.; tags | exploit, remote, arbitrary, php; advisories | CVE-2023-34960; SHA-256 | 9eddd6c9a39fb97ca77aeebd1ec713969953ce2f89e609c528b4a46ca5ec152d; Download | Favorite | View

Moxa EDR-810 Command Injection / Information Disclosure: Posted Oct 23, 2019; Authored by RandoriSec; Moxa EDR-810 suffers from command injection and information disclosure vulnerabilities.; tags | exploit, vulnerability, info disclosure; advisories | CVE-2019-10963, CVE-2019-10969; SHA-256 | 93e38fc3569bee3955b056de09b84048ae4fb87e813b1c03a73b32bcd0449b36; Download | Favorite | View

Bull / IBM AIX Clusterwatch / Watchware File Write / Command Injection: Posted Mar 7, 2017; Authored by RandoriSec; Bull / IBM AIX Clusterwatch / Watchware suffers from having trivial admin credentials, system file writes, and OS command injection vulnerabilities.; tags | exploit, vulnerability; systems | aix; SHA-256 | d5ea9a2e2afcd82dffc078e52492c712606d34f2aea367c7be11a1e1d36a6f0f; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days