CVE-2016-0956 Vulnerability in maven package org.apache.sling:org.apache.sling.servlets.post

Description

The Servlets Post component 2.3.6 in Apache Sling, as used in Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0, allows remote attackers to obtain sensitive information via unspecified vectors.

Remediation

References

http://packetstormsecurity.com/files/135720/Apache-Sling-Framework-2.3.6-Information-Disclosure.html

http://seclists.org/fulldisclosure/2016/Feb/48

http://www.securityfocus.com/archive/1/537498/100/0/threaded

https://helpx.adobe.com/security/products/experience-manager/apsb16-05.html

https://www.exploit-db.com/exploits/39435/

Related Vulnerabilities

CVE-2023-48223 Vulnerability in npm package fast-jwt

CVE-2022-1365 Vulnerability in npm package cross-fetch

CVE-2023-30541 Vulnerability in npm package @openzeppelin/contracts

CVE-2023-34454 Vulnerability in maven package org.xerial.snappy:snappy-java

CVE-2019-9155 Vulnerability in maven package org.webjars.npm:openpgp

Severity

High

Classification

CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N