CVE-2005-4384 in Community Enterprise信息

摘要

由 VulDB • 2026-07-01

CitySoft Community Enterprise 4.x 允许远程攻击者通过向 index.cfm 传递无效的(1)fuseaction 参数,以及向 document/docWindow.cfm 传递无效的(2)documentid 参数,获取服务器的完整路径。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Want to stay up to date on a daily basis?

Enable the mail alert feature now!