2 matches found
CVE-2023-46117
ReconFTW is affected by an RCE vulnerability due to inadequate validation of retrieved subdomains. An attacker can craft a malicious CSP entry on the reconFTW domain to execute arbitrary code within the application. The issue is addressed in version 2.7.1.1; upgrading is advised. Other sources co...
CVE-2023-46117 Inadequate validation of retrieved subdomains may lead to a Remote Code Execution in reconFTW
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities. A vulnerability has been identified in reconftw where inadequate validation of retrieved subdomains may lead to a Remote Code Execution R...