3 matches found
Authentication flaw
The Staging Webservice "sitecore modules/staging/service/api.asmx" in Sitecore Staging Module 5.4.0 rev.080625 and earlier allows remote attackers to bypass authentication and 1 upload files, 2 download files, 3 list directories, and 4 clear the server cache via crafted SOAP requests with arbitra...
CVE-2009-4367
The CVE concerns the Sitecore Staging Module (Sitecore Staging Module 5.4.0 rev.080625 and earlier) where the Staging Webservice (sitecore modules/staging/service/api.asmx) can be lasered by crafted SOAP requests to bypass authentication. The root cause is an authentication bypass that accepts ar...
CVE-2009-4367
The Staging Webservice "sitecore modules/staging/service/api.asmx" in Sitecore Staging Module 5.4.0 rev.080625 and earlier allows remote attackers to bypass authentication and 1 upload files, 2 download files, 3 list directories, and 4 clear the server cache via crafted SOAP requests with arbitra...