all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Oracle E-Business Suite (EBS) Unauthenticated Arbitrary File Upload

Add to bookmarks
March 1, 2023, 2:54 p.m. |

Packet Storm packetstormsecurity.com

This Metasploit module exploits an unauthenticated arbitrary file upload vulnerability in Oracle Web Applications Desktop Integrator, as shipped with Oracle EBS versions 12.2.3 through to 12.2.11, in order to gain remote code execution as the oracle user.

applications business code code execution desktop ebs exploits file file upload metasploit oracle oracle e-business suite order remote code remote code execution vulnerability web web applications

Visit resource

More from packetstormsecurity.com / Packet Storm

Openmediavault Remote Code Execution / Local Privilege Escalation 4 hours ago | packetstormsecurity.com
admin can code code execution +20
RIOT 2024.01 Buffer Overflows / Lack Of Size Checks / Out-Of-Bound Access 4 hours ago | packetstormsecurity.com
access buffer buffer overflows memory +4
I2P 2.5.1 4 hours ago | packetstormsecurity.com
applications can code data +12
Zed Attack Proxy 2.15.0 Cross Platform Package 4 hours ago | packetstormsecurity.com
applications attack cross platform developers +18
AIDE 0.18.8 5 hours ago | packetstormsecurity.com
advanced aide algorithms can +17
Microsoft PlayReady Complete Client Identity Compromise 5 hours ago | packetstormsecurity.com
attack client communication compromise +16
Panel Amadey.d.c MVID-2024-0680 Cross Site Scripting 5 hours ago | packetstormsecurity.com
amadey cross site scripting malware panel +2
Clinic Queuing System 1.0 Remote Code Execution 5 hours ago | packetstormsecurity.com
code code execution remote code remote code execution +4
Debian Security Advisory 5686-1 5 hours ago | packetstormsecurity.com
advisory corruption debian debian linux security +15

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Corporate Security Specialist - 2nd shift (12pm-8pm)

@ Perrigo Company | Grand Rapids, MI, US, 49503
View on infosec-jobs.com

Lead Engineer, Network Security -Network

@ Singtel | Singapore, Singapore
View on infosec-jobs.com

DevSecOps Engineer

@ Moveworks | Remote, USA
View on infosec-jobs.com

Systems Engineer - Cyber Security

@ Penske | Tampa, FL, United States
View on infosec-jobs.com

(Senior) Security Analyst (m/f/x)

@ REWE International Dienstleistungsgesellschaft m.b.H | Wiener Neudorf, Austria
View on infosec-jobs.com

Tier 3 Analyst- Red Team

@ Resource Management Concepts, Inc. | Quantico, Virginia, United States
View on infosec-jobs.com
View more jobs