Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.180 views

Accellion FTA Statecode Cookie Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Accellion FTA 'statecode' Cookie Arbitrary File Read", 'Description' = %q This module exploits a file disclosure vulnerability in the Accellion...

9.8CVSS7AI score0.86696EPSS
Exploits12
NVD
NVDadded 2017/10/10 1:29 p.m.18 views

CVE-2015-2856

Directory traversal vulnerability in the template function in function.inc in Accellion File Transfer Appliance devices before FTA911210 allows remote attackers to read arbitrary files via a .. dot dot in the statecode cookie...

7.5CVSS7.5AI score0.71207EPSS
Exploits3References1
Tenable Nessus
Tenable Nessusadded 2015/07/27 12:0 a.m.42 views

Accellion Secure File Transfer Appliance 'statecode' Cookie Remote File Disclosure

The remote Accellion Secure File Transfer Appliance is affected by an arbitrary file disclosure vulnerability due to improper sanitization of user-supplied input to the 'statecode' cookie used by the template function in function.inc. A remote, unauthenticated attacker can exploit this...

9.8CVSS7.3AI score0.86696EPSS
Exploits12References2
Rows per page
Query Builder