Showing 1 - 3 of 3

Files from Nicholas von Pechmann

Email address	nicholas at shorebreaksecurity.com
First Active	2017-03-10
Last Active	2024-09-01

DnaLIMS Directory Traversal: Posted Sep 1, 2024; Authored by h00die, Nicholas von Pechmann | Site metasploit.com; This Metasploit module exploits a directory traversal vulnerability found in dnaLIMS. Due to the way the viewAppletFsa.cgi script handles the secID parameter, it is possible to read a file outside the www directory.; tags | exploit, cgi; advisories | CVE-2017-6527; SHA-256 | 51e9c7257950972cb9c2f3eadb03402eb6967e9df8461564e00e53de1edcfeba; Download | Favorite | View

dnaLIMS Admin Module Command Execution: Posted Mar 20, 2017; Authored by h00die, Nicholas von Pechmann | Site metasploit.com; This Metasploit module utilizes an administrative module which allows for command execution. This page is completely unprotected from any authentication when given a POST request.; tags | exploit; advisories | CVE-2017-6526; SHA-256 | cfcbce3052c73130003476d0ee627bdcb72ab71008ac686ffaae35583cfb31c0; Download | Favorite | View

dnaLIMS Code Execution / XSS / Traversal / Session Hijacking: Posted Mar 10, 2017; Authored by Nicholas von Pechmann; dnaLIMS DNA sequencing application suffers from an improperly protected web shell, a directory traversal, insecure password storage, session hijacking, cross site scripting, and improperly protected content vulnerabilities.; tags | exploit, web, shell, vulnerability, xss, file inclusion; advisories | CVE-2017-6526, CVE-2017-6527, CVE-2017-6528, CVE-2017-6529; SHA-256 | 2c765d1002998d2516a62972d8bae6e5afe2348f1e7d3cf6ef351c942e91a44c; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days