Lucene search
Veracode Vulnerability DatabaseVERACODE:6871HistoryJun 28, 2018 - 6:18 a.m.
Information Disclosure
2018-06-2806:18:56
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3
0.924 High
EPSS
Percentile
99.0%
PortletV3AnnotatedDemo is susceptible to information disclosure. The vulnerability exists because it does not validate the file path information obtained from the file uploading, leaking configuration and sensitive information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| portletv3annotateddemo | eq | 3.0.0 |
References
Related
exploitpack
exploitpack
Apache Portals Pluto 3.0.0 - Remote Code Execution
2018-09-13 00:00:00
osv
osv
Exposure of Sensitive Information in Apache Pluto
2022-05-14 01:29:43
prion
prion
Design/Logic Flaw
2018-06-27 18:29:00
cvelist
cvelist
CVE-2018-1306
2018-06-27 00:00:00
nvd
nvd
CVE-2018-1306
2018-06-27 18:29:00
packetstorm
packetstorm
Apache Portals Pluto 3.0.0 Remote Code Execution
2018-09-14 00:00:00
zdt
zdt
Apache Portals Pluto 3.0.0 - Remote Code Execution Exploit
2018-09-16 00:00:00
cve
cve
CVE-2018-1306
2018-06-27 18:29:00
github
github
Exposure of Sensitive Information in Apache Pluto
2022-05-14 01:29:43
checkpoint_advisories
checkpoint_advisories
Apache Portals Pluto Remote Code Execution (CVE-2018-1306)
2018-09-16 00:00:00
exploitdb
exploitdb
Apache Portals Pluto 3.0.0 - Remote Code Execution
2018-09-13 00:00:00