2 matches found
CVE-2023-1699 Rapid7 Nexpose Forced Browsing
Rapid7 Nexpose versions 6.6.186 and below suffer from a forced browsing vulnerability. This vulnerability allows an attacker to manipulate URLs to forcefully browse to and access administrative pages. This vulnerability is fixed in version 6.6.187...
CVE-2023-1699
Rapid7 Nexpose: Vulnerable in versions 6.6.186 and earlier to a forced browsing issue that allows an attacker to manipulate URLs to reach administrative pages. Root cause and affected components are described as a forced browsing vulnerability; impact is access to admin pages. The issue is fixed ...