exploitDog

GHSA-hcc4-r9c5-cv8f

Опубликовано: 29 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

The Microsoft IIS Connector in JRun 4.0 and Macromedia ColdFusion MX 6.0, 6.1, and 6.1 J2EE allows remote attackers to bypass authentication and view source files, such as .asp, .pl, and .php files, via an HTTP request that ends in ";.cfm".

The Microsoft IIS Connector in JRun 4.0 and Macromedia ColdFusion MX 6.0, 6.1, and 6.1 J2EE allows remote attackers to bypass authentication and view source files, such as .asp, .pl, and .php files, via an HTTP request that ends in ";.cfm".

Ссылки

EPSS

Процентиль: 96%

0.28178

Средний

CVE ID

Связанные уязвимости

CVE-2004-0928

nvd

больше 21 года назад

The Microsoft IIS Connector in JRun 4.0 and Macromedia ColdFusion MX 6.0, 6.1, and 6.1 J2EE allows remote attackers to bypass authentication and view source files, such as .asp, .pl, and .php files, via an HTTP request that ends in ";.cfm".

EPSS

Процентиль: 96%

0.28178

Средний

CVE ID