← Volver a CVEs
CVE-2014-10079
N/ADescripcion
In Vembu StoreGrid 4.4.x, the front page of the server web interface leaks the private IP address in the "ipaddress" hidden form value of the HTML source code, which is disclosed because of incorrect processing of an index.php/ trailing slash.
Detalles CVE
Puntuacion CVSS v3.1N/A
Publicado2/23/2019
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
vembu:storegrid
Debilidades (CWE)
CWE-200
Referencias
https://cxsecurity.com/issue/WLB-2018120091(cve@mitre.org)
https://packetstormsecurity.com/files/127786/Vembu-Backup-Disaster-Recovery-6.1-Follow-Up.html(cve@mitre.org)
https://seclists.org/fulldisclosure/2014/Aug/8(cve@mitre.org)
https://www.exploit-db.com/exploits/46549/(cve@mitre.org)
https://cxsecurity.com/issue/WLB-2018120091(af854a3a-2127-422b-91ae-364da2661108)
https://packetstormsecurity.com/files/127786/Vembu-Backup-Disaster-Recovery-6.1-Follow-Up.html(af854a3a-2127-422b-91ae-364da2661108)
https://seclists.org/fulldisclosure/2014/Aug/8(af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/46549/(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.