CVE-2005-4384 in Community Enterprise
摘要
由 VulDB • 2026-07-01
CitySoft Community Enterprise 4.x 允许远程攻击者通过向 index.cfm 传递无效的(1)fuseaction 参数,以及向 document/docWindow.cfm 传递无效的(2)documentid 参数,获取服务器的完整路径。
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.