Описание
The Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows remote attackers to obtain version numbers and internal hostnames by reading comments in the HTML source of any page.
Ссылки
- Exploit
- Exploit
- PatchVendor Advisory
- Exploit
- Exploit
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:bea:aqualogic_interaction:5.0.2:*:*:*:*:*:*:*
cpe:2.3:a:bea:aqualogic_interaction:5.0.3:*:*:*:*:*:*:*
cpe:2.3:a:bea:aqualogic_interaction:5.0.4:*:*:*:*:*:*:*
cpe:2.3:a:bea:aqualogic_interaction:6.0.1.218452:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00559
Низкий
5 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
почти 4 года назад
The Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows remote attackers to obtain version numbers and internal hostnames by reading comments in the HTML source of any page.
EPSS
Процентиль: 68%
0.00559
Низкий
5 Medium
CVSS2
Дефекты
CWE-200