CobaltStrike <=4.5 HTTP(S) listener does not determine whether the request URL begins with "/", and attackers can obtain relevant information by specifying the URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
helpsystems cobalt strike |