cb
cvebase
.
~
/
products
/
getrailo
/
railo
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
getrailo
/
Getrailo Railo
Getrailo Railo vulnerabilities
1 known vulnerability affecting
getrailo/railo
.
Track
Total CVEs
1
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2014-5468
P2
HIGH
CVSS 8.8
PoC
≤ 4.2.1.000
2020-02-07
CVE-2014-5468 [HIGH] CWE-20 CVE-2014-5468: A File Inclusion vulnerability exists in Railo 4.2.1 and earlier via a specially-crafted URL request A File Inclusion vulnerability exists in Railo 4.2.1 and earlier via a specially-crafted URL request to the thumbnail.cfm to specify a malicious PNG file, which could let a remote malicious user obtain sensitive information or execute arbitrary code.
nvd
Getrailo Railo vulnerabilities | cvebase