Full title: Trovebox 4.0.0-rc6 SQL Injection / Bypss / SSRF Vulnerabilties 
Category: web applications
Platform: php
Trovebox versions 4.0.0-rc6 and below suffer from authentication bypass, server-side request forgery, unsafe token generation, nd remote SQL injection vulnerabilities.

# 0day.today @ http://0day.today/