Apache OFBiz安全漏洞

Apache OFBiz is the United States Apache Apache Foundation of a set of enterprise resource planning ERP system. The system provides a suite of Java-based web application components and tools. A security vulnerability exists in Apache Ofbiz versions 17.12.01 through 17.12.07, which stems from the...

ApacheOfBiz 17.12.01 - Remote Command Execution via Unsafe Deserialization of XMLRPC arguments

Exploit Title: ApacheOfBiz 17.12.01 - Remote Command Execution RCE via Unsafe Deserialization of XMLRPC arguments Exploit Author: Álvaro Muñoz, Adrián Díaz s4dbrd Vendor Homepage: https://ofbiz.apache.org/index.html Software Link: https://archive.apache.org/dist/ofbiz/apache-ofbiz-17.12.01.zip...

Apache OFBiz Injection Vulnerability

Apache OFBiz is the United States Apache Apache Software Foundation of a set of enterprise resource planning ERP system. The system provides a set of Java-based Web application components and tools. An injection vulnerability exists in Apache OFBiz version 17.12.01. An attacker can exploit this...

Apache OFBiz Cross-Site Request Forgery Vulnerability

Apache OFBiz is the United States Apache Apache Software Foundation of a set of enterprise resource planning ERP system. The system provides a complete set of Java-based Web application components and tools. A cross-site request forgery vulnerability exists in Apache OFBiz version 17.12.01 that...