漏洞标题
Adobe Campaign Classic 服务器端请求伪造 arbitrary 文件系统 read
漏洞描述信息
Adobe Campaign Classic 服务器端请求伪造任意文件系统读取
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
漏洞类别
N/A
漏洞标题
Adobe Campaign Classic Server-Side Request Forgery Arbitrary file system read
漏洞描述信息
Adobe Campaign version 7.3.1 (and earlier) and 8.3.9 (and earlier) are affected by a Server-Side Request Forgery (SSRF) vulnerability that could lead to arbitrary file system read. A low-privilege authenticated attacker can force the application to make arbitrary requests via injection of arbitrary URLs. Exploitation of this issue does not require user interaction.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
漏洞类别
服务端请求伪造(SSRF)
漏洞标题
Adobe Experience Manager 代码问题漏洞
漏洞描述信息
Adobe Experience Manager(AEM)是美国奥多比(Adobe)公司的一套可用于构建网站、移动应用程序和表单的内容管理解决方案。该方案支持移动内容管理、营销销售活动管理和多站点管理等。 Adobe Experience Manager (AEM)存在代码问题漏洞。攻击者利用该漏洞远程执行代码。
CVSS信息
N/A
漏洞类别
代码问题