CVE-2018-10732
Exploit-DB publication at: No disclosure!
Dataiku vendor Patch and Credits:
https://doc.dataiku.com/dss/latest/release_notes/4.2.html#security
Author
Alex Hernandez aka (@_alt3kx_)
Dataiku REST-API by default the software, allows anonymous access to functionality that allows an attacker to know valid users.
Use Git or checkout with SVN using the web URL.
Work fast with our official CLI. Learn more about the CLI.
Please sign in to use Codespaces.
If nothing happens, download GitHub Desktop and try again.
If nothing happens, download GitHub Desktop and try again.
If nothing happens, download Xcode and try again.
Your codespace will open once ready.
There was a problem preparing your codespace, please try again.
Exploit-DB publication at: No disclosure!
https://doc.dataiku.com/dss/latest/release_notes/4.2.html#security
Alex Hernandez aka (@_alt3kx_)
Dataiku REST-API by default the software, allows anonymous access to functionality that allows an attacker to know valid users.