what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 5 of 5

Files from SinSinology

Veeam Backup And Replication 12.1.2.172 Remote Code Execution

Posted Sep 16, 2024

Authored by SinSinology, WatchTowr | Site github.com

Veeam Backup and Replication version 12.1.2.172 unauthenticated remote code execution exploit.

tags | exploit, remote, code execution

advisories | CVE-2024-40711

SHA-256 | 144b93e970dc795468638040e64be6507385196ebeb695305b8bfbc265bcf2ed

Download | Favorite | View

Telerik Report Server Auth Bypass

Posted Sep 1, 2024

Authored by Spencer McIntyre, SinSinology | Site metasploit.com

This Metasploit module exploits an authentication bypass vulnerability in Telerik Report Server versions 10.0.24.305 and prior which allows an unauthenticated attacker to create a new account with administrative privileges. The vulnerability leverages the initial setup page which is still accessible once the setup process has completed. If either USERNAME or PASSWORD are not specified, then a random value will be selected. The module will fail if the specified USERNAME already exists.

tags | exploit, bypass

advisories | CVE-2024-4358

SHA-256 | dd5ebb936dffa162f01557508e65908c7d346e81b5aa548e7f6a390c3e136ffe

Download | Favorite | View

Progress Software WhatsUp Gold SQL Injection

Posted Aug 31, 2024

Authored by SinSinology | Site github.com

Progress Software WhatsUp Gold versions prior to 2024.0.0 suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

advisories | CVE-2024-6670

SHA-256 | d2643d3ed23cb223e7dc521c6848e801ebb910bcdd26246c0e58de40bcbd3c44

Download | Favorite | View

Telerik Report Server Authentication Bypass / Remote Code Execution

Posted Jun 13, 2024

Authored by unknown, Soroush Dalili, Spencer McIntyre, SinSinology | Site metasploit.com

This Metasploit module chains an authentication bypass vulnerability with a deserialization vulnerability to obtain remote code execution against Telerik Report Server versions 10.0.24.130 and below. The authentication bypass flaw allows an unauthenticated user to create a new user with administrative privileges. The USERNAME datastore option can be used to authenticate with an existing account to prevent the creation of a new one. The deserialization flaw works by uploading a specially crafted report that when loaded will execute an OS command as NT AUTHORITY\SYSTEM. The module will automatically delete the created report but not the account because users are unable to delete themselves.

tags | exploit, remote, code execution, bypass

advisories | CVE-2024-1800, CVE-2024-4358

SHA-256 | c8284cfa43ce5539a8a2a273491db985cf3ca1e11f9f79a70c88e33e5ddb8d98

Download | Favorite | View

VMWare Aria Operations For Networks SSH Private Key Exposure

Posted Oct 24, 2023

Authored by h00die, Harsh Jaiswal, Rahul Maini, SinSinology | Site metasploit.com

VMWare Aria Operations for Networks (vRealize Network Insight) versions 6.0.0 through 6.10.0 do not randomize the SSH keys on virtual machine initialization. Since the key is easily retrievable, an attacker can use it to gain unauthorized remote access as the "support" (root) user.

tags | exploit, remote, root

advisories | CVE-2023-34039

SHA-256 | 64ffcacaea1bc62f727b2dd191fed3e691ed87d11e14a28285a0d1db38476562

Download | Favorite | View