The document details multiple vulnerabilities in actiTIME 2015.2, including Open Redirect, HTTP Response Splitting, and Unquoted Service Path Elevation of Privilege. It provides specific exploit URLs and technical details about the affected software and environment.
Classification
Writeup 95%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target:actiTIME 2015.2 (Small Team Edition)
No auth needed
Prerequisites:Access to the target application · Network connectivity to the target server