logo
Vulnerability feed
Contributors
About
Blog
CONTRIBUTE

Vulnerability

warn

CVE-2018-1270

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2018-1270

Description:
Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.15 and older unsupported versions, allow applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message to the broker that can lead to a remote code execution attack.
Last updated date:
06/23/2022
Type:
exploit
Confidence:
HIGH
Date of publishing:
04/07/2018
Reference url to background

https://github.com/CaledoniaProject/CVE-2018-1270

Type:
exploit
Confidence:
HIGH
Date of publishing:
04/12/2018
Reference url to background

https://github.com/genxor/CVE-2018-1270_EXP

Type:
exploit
Confidence:
HIGH
Date of publishing:
06/26/2020
Reference url to background

https://github.com/CaledoniaProject/CVE-2018-1270

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2025

Privacy Policy