Server-side request forgery (SSRF) vulnerability in the proxy servlet in Alfresco Community Edition before 5.0.a allows remote attackers to trigger outbound requests to intranet servers, conduct port scans, and read arbitrary files via a crafted URI in the endpoint parameter.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:20:39
Updated: 2022-10-03T16:20:39
Reserved: 2022-10-03T00:00:00
Link: CVE-2014-9301
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-12-07T21:59:02.570
Modified: 2015-02-17T15:29:28.307
Link: CVE-2014-9301
JSON object: View
Redhat Information
No data.
CWE