cve/CVE-2017-11467.md at 88f2d41cd881985164d19125c57ec88f7fd558ca

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

648 B

Raw Blame History

CVE-2017-11467

Description

OrientDB through 2.2.22 does not enforce privilege requirements during "where" or "fetchplan" or "order by" use, which allows remote attackers to execute arbitrary OS commands via a crafted request.

648 B

Raw Blame History

CVE-2017-11467

Description

POC

Reference

Github

648 B Raw Blame History

CVE-2017-11467

Description

POC

Reference

Github

648 B

Raw Blame History