Apache OFBiz is the United States Apache (Apache) Foundation of a set of enterprise resource planning (ERP) system. The system provides a set of Java-based Web application components and tools. Apache OFBiz suffers from a server-side request forgery vulnerability that can be exploited by an attacker to conduct an SSRF attack by sending a specially crafted request to read arbitrary file attributes.
CPE | Name | Operator | Version |
---|---|---|---|
apache ofbiz | lt | 18.12.11 |