Lucene search
K

Exploit for Code Injection in Apache Ofbiz

🗓️ 17 Dec 2023 20:43:26Reported by mbadanoiuType 
githubexploit
 githubexploit
🔗 github.com👁 43 Views

FreeMarker SSTI exploit in Apache OfBiz enables remote code execution via the subject field with user interaction.

Related
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2022-25813
2 Sep 202207:15
attackerkb
Circl
CVE-2022-25813
20 Dec 202315:42
circl
CNNVD
Apache OFBiz 代码注入漏洞
2 Sep 202200:00
cnnvd
CNVD
Apache OFBiz Code Injection Vulnerability (CNVD-2023-03919)
2 Sep 202200:00
cnvd
CVE
CVE-2022-25813
2 Sep 202207:10
cve
Cvelist
CVE-2022-25813 Server-Side Template Injection affecting the ecommerce plugin of Apache OFBiz
2 Sep 202207:10
cvelist
NVD
CVE-2022-25813
2 Sep 202207:15
nvd
OSV
CVE-2022-25813
2 Sep 202207:15
osv
Prion
Code injection
2 Sep 202207:15
prion
Positive Technologies
PT-2022-17538 · Apache · Apache Ofbiz
2 Sep 202200:00
ptsecurity
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Dec 2023 20:56Current
8High risk
Vulners AI Score8
CVSS 3.17.5
EPSS0.67261
43