EXPLOITDB-EDB-37114

EXPLOITDB text VERIFIED WORKING POC
Exploit for CVE-2014-0999 - Sendio < 7.2.3 - Information Disclosure
AI Analysis

The exploit demonstrates an information disclosure vulnerability in Sendio ESP, where session identifiers are exposed in URLs and sensitive data can be leaked due to improper session handling. The provided Python script automates the detection of response mixup issues by comparing content lengths.

Attack Type
info_leak
Complexity
moderate
Reliability
reliable
MITRE ATT&CK
T1187 - Forced Authentication T1552 - Unsecured Credentials
Loading exploit code...
Download ZIP Password: eip
Source
Platform Exploitdb
Type webapps
Platform jsp
Language text
Files 1
Authors
Core Security Martin Gallo
Vulnerability
CVE-2014-0999
Sendio < 7.2.3 - Information Disclosure