2 matches found
Sitecore CMS < 5.3.2 rev. 090212 Web Service Security Database Information Disclosure
The remote host is running a version of Sitecore CMS which is reportedly affected by an information disclosure vulnerability. An attacker could exploit this in order to gain unauthorized access to security databases. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
CVE-2009-1055
Mode C: The vulnerability affects Sitecore CMS 5.3.1 rev. 071114 where the web service can disclose security databases and credentials to remote authenticated users via SOAP/XML requests. Root cause is unspecified in the public initial description, but connected Nessus/NVD entries confirm an info...