Lucee 5.4.2.17 - Authenticated Reflected XSS
Tags
attack-pattern: | Credentials - T1589.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Scripting - T1064 Scripting |
Common Information
Type | Value |
---|---|
UUID | 22750b83-dcc6-478a-92da-a6e5bf74e2bb |
Fingerprint | 9662fb19bf2b96be |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Aug. 8, 2023, midnight |
Added to db | Aug. 8, 2023, 6:33 p.m. |
Last updated | Sept. 1, 2024, 8:32 p.m. |
Headline | Lucee 5.4.2.17 - Authenticated Reflected XSS |
Title | Lucee 5.4.2.17 - Authenticated Reflected XSS |
Detected Hints/Tags/Attributes | 19/1/11 |
Source URLs
Redirection | Url | |
---|---|---|
Details | Source | https://www.exploit-db.com/exploits/51668 |
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 163 | ✔ | — | https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 2 | www.lucee.org |
|
Details | Domain | 2 | download.lucee.org |
|
Details | File | 2 | server.cfm |
|
Details | File | 2 | web.cfm |
|
Details | IPv4 | 2 | 5.4.2.17 |
|
Details | IPv4 | 2 | 172.16.110.130 |
|
Details | Url | 2 | https://www.lucee.org |
|
Details | Url | 2 | https://download.lucee.org |
|
Details | Url | 2 | http://172.16.110.130:8888/lucee/admin/server.cfm?action= |
|
Details | Url | 2 | http://172.16.110.130:8888 |
|
Details | Url | 2 | http://172.16.110.130:8888/lucee/admin/web.cfm?action=services.gateway |