5 matches found
CVE-2014-9301
Server-side request forgery SSRF vulnerability in the proxy servlet in Alfresco Community Edition before 5.0.a allows remote attackers to trigger outbound requests to intranet servers, conduct port scans, and read arbitrary files via a crafted URI in the endpoint parameter...
CVE-2014-9301
Server-side request forgery SSRF vulnerability in the proxy servlet in Alfresco Community Edition before 5.0.a allows remote attackers to trigger outbound requests to intranet servers, conduct port scans, and read arbitrary files via a crafted URI in the endpoint parameter...
CVE-2014-9301
CVE-2014-9301 affects Alfresco Community Edition before 5.0.a, via a SSRF in the proxy servlet. A crafted endpoint parameter can trigger outbound requests to intranet servers, enabling port scans and reading arbitrary files. Public data reports CVSSv2 base score 6.4 (MEDIUM). Exploitation referen...
CVE-2014-9301
Server-side request forgery SSRF vulnerability in the proxy servlet in Alfresco Community Edition before 5.0.a allows remote attackers to trigger outbound requests to intranet servers, conduct port scans, and read arbitrary files via a crafted URI in the endpoint parameter...
CVE-2014-9301
creationtimestamp| type| source ---|---|--- 2014-07-16 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39258...