A Server-Side Request Forgery (SSRF) in Rocket TRUfusion Portal v7.9.2.1 allows remote malicious users to gain access to sensitive resources on the internal network via a crafted HTTP request to /trufusionPortal/upDwModuleProxy.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rocketsoftware trufusion enterprise |