2 matches found
com.adobe.granite:com.adobe.granite.auth.oauth (>=0.0.12 <=1.0.0-R201304291556), com.adobe.granite:com.adobe.granite.auth.saml (>=0.1.14 <=0.2.2) +16 more potentially affected by CVE-2013-4390 via org.apache.sling:org.apache.sling.auth.core (>=1.0.0 <=1.1.0)
org.apache.sling:org.apache.sling.auth.core MAVEN version =1.0.0, =0.0.12, =0.1.14, =0.0.2, =1.0.0, =1.0.12, =1.0.12, =1.0.18, =5.4.0, =0.1.0, =2.2.0, =0.6.0, =1.0.0, =2.1.0, =1.1.0, =1.2.8 and more Source cves: CVE-2013-4390 Source advisory: OSV:GHSA-J7F2-CQVQ-5JCF...
U.S. Dept Of Defense: CRXDE Lite/CRX is on ██████ exposed that leads to PII disclosure
hi team , i found that aem is running on ████████ and CRXDE Lite/CRX is exposed to unauthenticated user that can lead to information disclosure POC ==== 1-visit https://██████//██████████ 2-go to query and search for admin then execute 3-go to this endpoint to retrieve the information...