Lucene search
GoogleOSV:GHSA-M27M-628V-XXP2HistoryMay 14, 2022 - 2:47 a.m.
Exposure of Sensitive Information to an Unauthorized Actor in Apache Sling Servlets Post
2022-05-1402:47:05
Google
osv.dev
58
0.027 Low
EPSS
Percentile
90.6%
The Servlets Post component 2.3.6 in Apache Sling, as used in Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0, allows remote attackers to obtain sensitive information via unspecified vectors.
References
packetstormsecurity.com/files/135720/Apache-Sling-Framework-2.3.6-Information-Disclosure.html
seclists.org/fulldisclosure/2016/Feb/48
www.securityfocus.com/archive/1/537498/100/0/threaded
helpx.adobe.com/security/products/experience-manager/apsb16-05.html
nvd.nist.gov/vuln/detail/CVE-2016-0956
www.exploit-db.com/exploits/39435
Related
packetstorm
packetstorm
Apache Sling Framework 2.3.6 Information Disclosure
2016-02-11 00:00:00
github
github
vulnerlab
vulnerlab
Apache Sling Framework v2.3.6 - Information Disclosure
2016-02-10 00:00:00
Apache Sling Framework v2.3.6 - Information Disclosure
2016-02-10 00:00:00
cvelist
cvelist
CVE-2016-0956
2016-02-10 20:00:00
cve
cve
CVE-2016-0956
2016-02-10 20:59:08
exploitpack
exploitpack
Apache Sling Framework (Adobe AEM) 2.3.6 - Information Disclosure
2016-02-10 00:00:00
nvd
nvd
CVE-2016-0956
2016-02-10 20:59:08
prion
prion
Information disclosure
2016-02-10 20:59:00
zdt
zdt
Apache Sling Framework (Adobe AEM) 2.3.6 - Information Disclosure
2016-02-10 00:00:00
exploitdb
exploitdb
Apache Sling Framework (Adobe AEM) 2.3.6 - Information Disclosure
2016-02-10 00:00:00
openvas
openvas
nessus
nessus
rapid7blog
rapid7blog
NICER Protocol Deep Dive: Internet Exposure of HTTP and HTTPS
2021-01-29 14:20:22