16 matches found
CVE-2023-51467
The vulnerability permits attackers to circumvent authentication processes, enabling them to remotely execute arbitrary code...
Exploit for Server-Side Request Forgery in Apache Ofbiz
BadBizness Automatic exploitation scrip...
Exploit for Server-Side Request Forgery in Apache Ofbiz
BadBizness Automatic exploitation scrip...
Exploit for Server-Side Request Forgery in Apache Ofbiz
Go-Exploit for CVE-2023-51467 This repository contains a go-e...
Exploit for Code Injection in Apache Ofbiz
Exploit CVE-2023-49070 and CVE-2023-51467 Apache OFBiz 18.12...
Zero-Day Authentication Bypass Exploit in Apache OFBiz
Summary: CVE-2023-51467 is a critical authentication bypass vulnerability in Apache OFBiz. Exploitation of this vulnerability could result in bypass authentication to achieve a simple Server-Side Request Forgery SSRF or arbitrary code execution. Users are advised to update to Apache OFBiz version...
Exploit for Code Injection in Apache Ofbiz
Apache OFBiz Authentication Bypass Vulnerability CVE-2023-514...
VulnCheck KEV: CVE-2023-51467
The vulnerability permits attackers to circumvent authentication processes, enabling them to remotely execute arbitrary code...
Imperva defends customers against recent vulnerabilities in Apache OFBiz
On December 26, researchers from SonicWall Capture Labs discovered an authentication bypass vulnerability in Apache OFBiz, tracked as CVE-2023-51467. This bug has a CVSS score of 9.8 and allows attackers to achieve server-side request forgery SSRF by bypassing the program’s authentication. This...
Exploit for Server-Side Request Forgery in Apache Ofbiz
CVE-2023-51467 - Apache OFBiz Authentication Bypass This flaw...
Exploit for Server-Side Request Forgery in Apache Ofbiz
CVE-2023-51467 Scanner 🕵️♂️ Description 📜 CVE-2023-51467...
Exploit for Server-Side Request Forgery in Apache Ofbiz
CVE-2023-51467 exp.py changed to command execution P...
Critical Zero-Day in Apache OfBiz ERP System Exposes Businesses to Attack
A new zero-day security flaw has been discovered in Apache OfBiz, an open-source Enterprise Resource Planning ERP system that could be exploited to bypass authentication protections. The vulnerability, tracked as CVE-2023-51467, resides in the login functionality and is the result of an incomplet...
CVE-2023-51467
CVE-2023-51467 is a documented authentication bypass vulnerability in Apache OFBiz that can enable remote code execution. Multiple connected sources describe pre-authentication bypass paths and post-bypass impact, including potential SSRF or arbitrary code execution. Affected version notes appear...
Apache OFBiz XML-RPC Java Deserialization
This module exploits a Java deserialization vulnerability in Apache OFBiz's unauthenticated XML-RPC endpoint /webtools/control/xmlrpc for versions prior to 17.12.01 using the ROME gadget chain. Versions up to 18.12.11 are exploitable utilizing an auth bypass CVE-2023-51467 and use the...
CVE-2023-51467
creationtimestamp| type| source ---|---|--- 2021-03-11 18:53:17+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/apacheofbizdeserialization.rb 2023-12-26 16:27:07+00:00| seen| https://t.me/ctinow/159364 2023-12-27 16:45:34+00:00| seen|...