Spring Cloud Config 2.1.x Path Traversal
Posted by deepcore on May 1, 2019 – 4:40 am
This Metasploit module exploits an unauthenticated directory traversal vulnerability which exists in Spring Cloud Config versions 2.1.x prior to 2.1.2, versions 2.0.x prior to 2.0.4, and versions 1.4.x prior to 1.4.6. Spring Cloud Config listens by default on port 8888.
Post a reply
You must be logged in to post a comment.