9 matches found
Exploit for Path Traversal in Apache Ofbiz
CVE-2024-32113 Exploit Apache OFBiz Path Traversal to RCE exp...
K000141002: Apache OFBiz vulnerabilities CVE-2024-32113, CVE-2024-36104, and CVE-2024-45195
Security Advisory Description CVE-2024-32113 Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache OFBiz.This issue affects Apache OFBiz: before 18.12.13. Users are recommended to upgrade to version 18.12.13, which fixes the issue. CVE-2024-36104...
Apache OFBiz Path Traversal (CVE-2024-32113)
Binary data apacheofbizcve-2024-32113.nbin...
Apache OFBiz forgotPassword/ProgramExport RCE
Apache OFBiz versions prior to 18.12.13 are vulnerable to a path traversal vulnerability CVE-2024-32113. The vulnerable endpoint /webtools/control/forgotPassword allows an attacker to access the ProgramExport endpoint which in turn allows for remote code execution in the context of the user runni...
CVE-2024-32113
creationtimestamp| type| source ---|---|--- 2024-05-13 14:19:09+00:00| published-proof-of-concept| https://t.me/HackingInsights/372 2024-05-16 05:52:02+00:00| published-proof-of-concept| https://t.me/proxybar/2082 2024-05-17 02:12:53+00:00| published-proof-of-concept|...
CVE-2024-32113
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache OFBiz.This issue affects Apache OFBiz: before 18.12.13. Users are recommended to upgrade to version 18.12.13, which fixes the issue...
CVE-2024-32113 Apache OFBiz: Path traversal leading to RCE
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache OFBiz.This issue affects Apache OFBiz: before 18.12.13. Users are recommended to upgrade to version 18.12.13, which fixes the issue...
CVE-2024-32113
CVE-2024-32113 describes a path traversal vulnerability in Apache OFBiz (affected:
CVE-2024-32113
Improper Limitation of a Pathname to a Restricted Directory ‘Path Traversal’ vulnerability in Apache OFBiz.This issue affects Apache OFBiz: before 18.12.13. Users are recommended to upgrade to version 18.12.13, which fixes the issue. Recent assessments: Assessed Attacker Value: 0 Assessed Attacke...