CVEs-PoC/2018/CVE-2018-16794.md at dc3bd6cd71a486f862e7cf4da52fce4cfeb10e52

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-08 06:06:44 +02:00

Files

T

0xMarcio 8654f5abb7 Update CVE sources 2024-08-11 18:44

2024-08-11 18:44:53 +00:00

1.0 KiB

Raw Blame History

CVE-2018-16794

Description

Microsoft ADFS 4.0 Windows Server 2016 and previous (Active Directory Federation Services) has an SSRF vulnerability via the txtBoxEmail parameter in /adfs/ls.

POC

Reference

http://packetstormsecurity.com/files/149376/Microsoft-ADFS-4.0-Windows-Server-2016-Server-Side-Request-Forgery.html
http://seclists.org/fulldisclosure/2018/Sep/13
https://seclists.org/bugtraq/2018/Sep/26

Github

https://github.com/0dayhunter/Facebook-BugBounty-Writeups
https://github.com/Jester0x01/Facebook-Bug-Bounty-Writeups
https://github.com/Krishnathakur063/Facebook-BugBounty-Writeup
https://github.com/bikramsah/Meta--BugBounty-Writeups
https://github.com/jaiswalakshansh/Facebook-BugBounty-Writeups

1.0 KiB Raw Blame History

CVE-2018-16794

Description

POC

Reference

Github

1.0 KiB

Raw Blame History