3 matches found
Accellion FTA Statecode Cookie Arbitrary File Read
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Accellion FTA 'statecode' Cookie Arbitrary File Read", 'Description' = %q This module exploits a file disclosure vulnerability in the Accellion...
CVE-2015-2856
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/accellionftastatecodefileread.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23...
CVE-2015-2856
CVE-2015-2856 affects Accellion File Transfer Appliance (FTA) prior to FTA_9_11_210. A directory traversal flaw in the template function of functions.inc allows remote attackers to read arbitrary files by manipulating the statecode cookie (statecode-based path traversal). Public exploit/module ex...