Lucene search
PRIOn knowledge basePRION:CVE-2014-9304HistoryDec 07, 2014 - 9:59 p.m.
Server side request forgery (ssrf)
2014-12-0721:59:00
PRIOn knowledge base
www.prio-n.com
9
Plex Media Server before 0.9.9.3 allows remote attackers to bypass the web server whitelist, conduct SSRF attacks, and execute arbitrary administrative actions via multiple crafted X-Plex-Url headers to system/proxy, which are inconsistently processed by the request handler in the backend web server.
| CPE | Name | Operator | Version |
|---|---|---|---|
| media_server | le | 0.9.9.2 |
Related
cve
cve
CVE-2014-9304
2022-10-03 16:20:40
nvd
nvd
CVE-2014-9304
2014-12-07 21:59:05
cvelist
cvelist
CVE-2014-9304
2022-10-03 16:20:40
openvas
openvas
Plex Media Server < 0.9.9.3 Multiple Vulnerabilities
2014-12-22 00:00:00