Lucene search
K

808 matches found

NVD
NVD
added 2009/12/21 4:30 p.m.9 views

CVE-2009-4367

The Staging Webservice "sitecore modules/staging/service/api.asmx" in Sitecore Staging Module 5.4.0 rev.080625 and earlier allows remote attackers to bypass authentication and 1 upload files, 2 download files, 3 list directories, and 4 clear the server cache via crafted SOAP requests with arbitra...

6.8CVSS7.2AI score0.06087EPSS
Exploits1References7
Cvelist
Cvelist
added 2009/12/21 4:0 p.m.19 views

CVE-2009-4367

The Staging Webservice "sitecore modules/staging/service/api.asmx" in Sitecore Staging Module 5.4.0 rev.080625 and earlier allows remote attackers to bypass authentication and 1 upload files, 2 download files, 3 list directories, and 4 clear the server cache via crafted SOAP requests with arbitra...

7.2AI score0.06087EPSS
Exploits1References7
CVE
CVE
added 2009/12/21 4:0 p.m.59 views

CVE-2009-4367

The CVE concerns the Sitecore Staging Module (Sitecore Staging Module 5.4.0 rev.080625 and earlier) where the Staging Webservice (sitecore modules/staging/service/api.asmx) can be lasered by crafted SOAP requests to bypass authentication. The root cause is an authentication bypass that accepts ar...

6.8CVSS7.2AI score0.06087EPSS
Exploits1References7Affected Software1
0day.today
0day.today
added 2009/12/17 12:0 a.m.34 views

Authentication bypass+file manipulation in Sitecore Staging Mod 5.4.0

Exploit for unknown platform in category web applications ============================================================================ Authentication bypass and file manipulation in Sitecore Staging Module 5.4.0 ============================================================================ SEC...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/12/17 12:0 a.m.44 views

Sitecore Staging Module Authentication Bypass

SEC Consult Security Advisory ========================================================================== title: Authentication bypass and file manipulation in Sitecore Staging Module products: Sitecore Staging Module vulnerable version: Sitecore Staging Module = 5.4.0 rev.080625 fixed version:...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2009/12/17 12:0 a.m.37 views

Sitecore Staging Module 5.4.0 - Authentication Bypass / File Manipulation

SEC Consult Security Advisory ========================================================================== title: Authentication bypass and file manipulation in Sitecore Staging Module products: Sitecore Staging Module vulnerable version: Sitecore Staging Module = 5.4.0 rev.080625 fixed version:...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2009/12/17 12:0 a.m.60 views

SEC Consult SA-20091217-0 :: Authentication bypass and file manipulation in Sitecore Staging Module

SEC Consult Security Advisory 20091217-0 ========================================================================== title: Authentication bypass and file manipulation in Sitecore Staging Module products: Sitecore Staging Module vulnerable version: Sitecore Staging Module = 5.4.0 rev.080625 fixed...

0.5AI score
Exploits0
seebug.org
seebug.org
added 2009/12/17 12:0 a.m.42 views

Authentication bypass and file manipulation in Sitecore Staging Module 5.4.0

No description provided by source. SEC Consult Security Advisory 20091217-0 ========================================================================== title: Authentication bypass and file manipulation in Sitecore Staging Module products: Sitecore Staging Module vulnerable version: Sitecore Stagi...

7.1AI score
Exploits0
Rows per page
Query Builder