Trovebox 4.0.0-rc6 SQL Injection / Bypss / SSRF
Posted by deepcore on May 3, 2018 – 9:45 am
Trovebox versions 4.0.0-rc6 and below suffer from authentication bypass, server-side request forgery, unsafe token generation, nd remote SQL injection vulnerabilities.
Post a reply
You must be logged in to post a comment.