SSD Advisory – SME Server Unauthenticated XSS To Privileged Remote Code Execution
Vulnerabilities SummaryThe following advisory describes a vulnerability in SME Server 9.2, which lets an unauthenticated attackers perform XSS attack that leads to remote code execution as root. SME Server is a Linux distribution for small and medium enterprises by Koozali foundation.CVECVE-2018-18072CreditAn independent security researcher, Karn Ganeshen has reported this vulnerability to Beyond Security’s SecuriTeam Secure …
SSD Advisory – SME Server Unauthenticated XSS To Privileged Remote Code Execution Read More »
